VYPR
← All advisories
Unrated severityNVD Advisory· Published Jan 16, 2020· Updated Aug 5, 2024

CVE-2019-13933

CVE-2019-13933

Description

A vulnerability has been identified in SCALANCE X204RNA (HSR), SCALANCE X204RNA (PRP), SCALANCE X204RNA EEC (HSR), SCALANCE X204RNA EEC (PRP), SCALANCE X204RNA EEC (PRP/HSR), SCALANCE X302-7 EEC (230V), SCALANCE X302-7 EEC (230V, coated), SCALANCE X302-7 EEC (24V), SCALANCE X302-7 EEC (24V, coated), SCALANCE X302-7 EEC (2x 230V), SCALANCE X302-7 EEC (2x 230V, coated), SCALANCE X302-7 EEC (2x 24V), SCALANCE X302-7 EEC (2x 24V, coated), SCALANCE X304-2FE, SCALANCE X306-1LD FE, SCALANCE X307-2 EEC (230V), SCALANCE X307-2 EEC (230V, coated), SCALANCE X307-2 EEC (24V), SCALANCE X307-2 EEC (24V, coated), SCALANCE X307-2 EEC (2x 230V), SCALANCE X307-2 EEC (2x 230V, coated), SCALANCE X307-2 EEC (2x 24V), SCALANCE X307-2 EEC (2x 24V, coated), SCALANCE X307-3, SCALANCE X307-3, SCALANCE X307-3LD, SCALANCE X307-3LD, SCALANCE X308-2, SCALANCE X308-2, SCALANCE X308-2LD, SCALANCE X308-2LD, SCALANCE X308-2LH, SCALANCE X308-2LH, SCALANCE X308-2LH+, SCALANCE X308-2LH+, SCALANCE X308-2M, SCALANCE X308-2M, SCALANCE X308-2M PoE, SCALANCE X308-2M PoE, SCALANCE X308-2M TS, SCALANCE X308-2M TS, SCALANCE X310, SCALANCE X310, SCALANCE X310FE, SCALANCE X310FE, SCALANCE X320-1 FE, SCALANCE X320-1-2LD FE, SCALANCE X408-2, SCALANCE XR324-12M (230V, ports on front), SCALANCE XR324-12M (230V, ports on front), SCALANCE XR324-12M (230V, ports on rear), SCALANCE XR324-12M (230V, ports on rear), SCALANCE XR324-12M (24V, ports on front), SCALANCE XR324-12M (24V, ports on front), SCALANCE XR324-12M (24V, ports on rear), SCALANCE XR324-12M (24V, ports on rear), SCALANCE XR324-12M TS (24V), SCALANCE XR324-12M TS (24V), SCALANCE XR324-4M EEC (100-240VAC/60-250VDC, ports on front), SCALANCE XR324-4M EEC (100-240VAC/60-250VDC, ports on front), SCALANCE XR324-4M EEC (100-240VAC/60-250VDC, ports on rear), SCALANCE XR324-4M EEC (100-240VAC/60-250VDC, ports on rear), SCALANCE XR324-4M EEC (24V, ports on front), SCALANCE XR324-4M EEC (24V, ports on front), SCALANCE XR324-4M EEC (24V, ports on rear), SCALANCE XR324-4M EEC (24V, ports on rear), SCALANCE XR324-4M EEC (2x 100-240VAC/60-250VDC, ports on front), SCALANCE XR324-4M EEC (2x 100-240VAC/60-250VDC, ports on front), SCALANCE XR324-4M EEC (2x 100-240VAC/60-250VDC, ports on rear), SCALANCE XR324-4M EEC (2x 100-240VAC/60-250VDC, ports on rear), SCALANCE XR324-4M EEC (2x 24V, ports on front), SCALANCE XR324-4M EEC (2x 24V, ports on front), SCALANCE XR324-4M EEC (2x 24V, ports on rear), SCALANCE XR324-4M EEC (2x 24V, ports on rear), SCALANCE XR324-4M PoE (230V, ports on front), SCALANCE XR324-4M PoE (230V, ports on rear), SCALANCE XR324-4M PoE (24V, ports on front), SCALANCE XR324-4M PoE (24V, ports on rear), SCALANCE XR324-4M PoE TS (24V, ports on front), SIPLUS NET SCALANCE X308-2. Affected devices contain a vulnerability that allows an unauthenticated attacker to violate access-control rules. The vulnerability can be triggered by sending GET request to specific uniform resource locator on the web configuration interface of the device. The security vulnerability could be exploited by an attacker with network access to the affected systems. An attacker could use the vulnerability to obtain sensitive information or change the device configuration. At the time of advisory publication no public exploitation of this security vulnerability was known.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

An unauthenticated attacker with network access can exploit a missing authentication for critical function (CWE-306) in affected Siemens SCALANCE X switches to obtain information and change device configuration.

Vulnerability

A missing authentication for critical function vulnerability (CWE-306) exists in multiple families of Siemens SCALANCE X switches. The affected products include the SCALANCE X-200RNA series (all versions prior to v3.2.7), the SCALANCE X-300 switch family including X408 and SIPLUS NET variants (all versions prior to v4.1.3), and a wide range of SCALANCE X models such as X204RNA, X302-7 EEC, X304-2FE, X306-1LD FE, X307-2 EEC, X307-3, X308-2, X310, X320-1 FE, X408-2, XR324-12M, XR324-4M EEC, and many more listed in the advisory [1]. All versions prior to the respective fixed releases are vulnerable.

Exploitation

An attacker with network access to an affected device can exploit this vulnerability remotely without authentication. The attack vector is network-based (AV:N), requires low attack complexity (AC:L), and no privileges (PR:N), but does require user interaction (UI:R), meaning a user must perform a specific action to trigger the vulnerability. The attacker can then violate access-control rules by sending specially crafted network requests [1].

Impact

Successful exploitation allows an unauthenticated attacker to obtain sensitive information and change the device configuration. The CVSS v3 base score is 8.8, with a vector string of (AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:H/A:L), indicating a low impact on confidentiality, high impact on integrity, and low impact on availability, with a scope change (S:C). This means the attacker can compromise resources beyond the original authorization boundaries [1].

Mitigation

Siemens has released firmware updates to address this vulnerability. For SCALANCE X-200RNA variants (HSR, PRP, EEC), update to v3.2.7 or later. For SCALANCE X-300 switch family (including X408 and SIPLUS NET variants), update to v4.1.3 or later. Users should apply these updates as soon as possible. No workarounds are mentioned in the available references; the advisory recommends updating to the fixed versions [1].

References
  1. Siemens SCALANCE X Switches (Update B) | CISA

AI Insight generated on May 26, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.

Affected products

56
  • Siemens Foundation/SCALANCE X204RNA EEC (PRP/HSR)cpe-rescue3 versions
    All versions < V3.2.7+ 2 more
    • (no CPE)range: All versions < V3.2.7
    • (no CPE)range: All versions < V3.2.7
    • (no CPE)range: All versions < V3.2.7
  • Siemens Foundation/Scalance X204rna Firmwarecpe-rescue2 versions
    All versions < V3.2.7+ 1 more
    • (no CPE)range: All versions < V3.2.7
    • (no CPE)range: All versions < V3.2.7
  • Siemens/SCALANCE X302-7 EEC (230V)v5
    Range: All versions < V4.1.3
  • Siemens/SCALANCE X302-7 EEC (230V, coated)v5
    Range: All versions < V4.1.3
  • Siemens/SCALANCE X302-7 EEC (24V)v5
    Range: All versions < V4.1.3
  • Siemens/SCALANCE X302-7 EEC (24V, coated)v5
    Range: All versions < V4.1.3
  • Siemens/SCALANCE X302-7 EEC (2x 230V)v5
    Range: All versions < V4.1.3
  • Siemens/SCALANCE X302-7 EEC (2x 230V, coated)v5
    Range: All versions < V4.1.3
  • Siemens/SCALANCE X302-7 EEC (2x 24V)v5
    Range: All versions < V4.1.3
  • Siemens/SCALANCE X302-7 EEC (2x 24V, coated)v5
    Range: All versions < V4.1.3
  • Siemens Foundation/Scalance X308 2mcpe-rescue11 versions
    All versions < V4.1.3+ 10 more
    • (no CPE)range: All versions < V4.1.3
    • (no CPE)range: All versions < V4.1.3
    • (no CPE)range: All versions < V4.1.3
    • (no CPE)range: All versions < V4.1.3
    • (no CPE)range: All versions < V4.1.3
    • (no CPE)range: All versions < V4.1.3
    • (no CPE)range: All versions < V4.1.3
    • (no CPE)range: All versions < V4.1.3
    • (no CPE)range: All versions < V4.1.3
    • (no CPE)range: All versions < V4.1.3
    • (no CPE)range: All versions < V4.1.3
  • Siemens/SCALANCE X306-1LD FEv5
    Range: All versions < V4.1.3
  • Siemens/SCALANCE X307-2 EEC (230V)v5
    Range: All versions < V4.1.3
  • Siemens/SCALANCE X307-2 EEC (230V, coated)v5
    Range: All versions < V4.1.3
  • Siemens/SCALANCE X307-2 EEC (24V)v5
    Range: All versions < V4.1.3
  • Siemens/SCALANCE X307-2 EEC (24V, coated)v5
    Range: All versions < V4.1.3
  • Siemens/SCALANCE X307-2 EEC (2x 230V)v5
    Range: All versions < V4.1.3
  • Siemens/SCALANCE X307-2 EEC (2x 230V, coated)v5
    Range: All versions < V4.1.3
  • Siemens/SCALANCE X307-2 EEC (2x 24V)v5
    Range: All versions < V4.1.3
  • Siemens/SCALANCE X307-2 EEC (2x 24V, coated)v5
    Range: All versions < V4.1.3
  • Siemens Foundation/SCALANCE X300cpe-rescue2 versions
    All versions < V4.1.3+ 1 more
    • (no CPE)range: All versions < V4.1.3
    • (no CPE)range: All versions < V4.1.3
  • Siemens/SCALANCE X320-1-2LD FEv5
    Range: All versions < V4.1.3
  • Siemens/SCALANCE X320-1 FEv5
    Range: All versions < V4.1.3
  • Siemens/SCALANCE XR324-12M (230V, ports on front)v5
    Range: All versions < V4.1.3
  • Siemens/SCALANCE XR324-12M (230V, ports on rear)v5
    Range: All versions < V4.1.3
  • Siemens/SCALANCE XR324-12M (24V, ports on front)v5
    Range: All versions < V4.1.3
  • Siemens/SCALANCE XR324-12M (24V, ports on rear)v5
    Range: All versions < V4.1.3
  • Siemens Foundation/Scalance Xr324 12m Ts Firmwarecpe-rescue
    Range: All versions < V4.1.3
  • Siemens/SCALANCE XR324-4M EEC (100-240VAC/60-250VDC, ports on front)v5
    Range: All versions < V4.1.3
  • Siemens/SCALANCE XR324-4M EEC (100-240VAC/60-250VDC, ports on rear)v5
    Range: All versions < V4.1.3
  • Siemens/SCALANCE XR324-4M EEC (24V, ports on front)v5
    Range: All versions < V4.1.3
  • Siemens/SCALANCE XR324-4M EEC (24V, ports on rear)v5
    Range: All versions < V4.1.3
  • Siemens/SCALANCE XR324-4M EEC (2x 100-240VAC/60-250VDC, ports on front)v5
    Range: All versions < V4.1.3
  • Siemens/SCALANCE XR324-4M EEC (2x 100-240VAC/60-250VDC, ports on rear)v5
    Range: All versions < V4.1.3
  • Siemens/SCALANCE XR324-4M EEC (2x 24V, ports on front)v5
    Range: All versions < V4.1.3
  • Siemens/SCALANCE XR324-4M EEC (2x 24V, ports on rear)v5
    Range: All versions < V4.1.3
  • Siemens/SCALANCE XR324-4M PoE (230V, ports on front)v5
    Range: All versions < V4.1.3
  • Siemens/SCALANCE XR324-4M PoE (230V, ports on rear)v5
    Range: All versions < V4.1.3
  • Siemens/SCALANCE XR324-4M PoE (24V, ports on front)v5
    Range: All versions < V4.1.3
  • Siemens/SCALANCE XR324-4M PoE (24V, ports on rear)v5
    Range: All versions < V4.1.3
  • Siemens/SCALANCE XR324-4M PoE TS (24V, ports on front)v5
    Range: All versions < V4.1.3
  • Siemens/SIPLUS NET SCALANCE X308-2v5
    Range: All versions < V4.1.3

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

2

News mentions

0

No linked articles in our index yet.