CVE-2022-40631
Description
A vulnerability has been identified in SCALANCE X200-4P IRT (All versions < V5.5.0), SCALANCE X201-3P IRT (All versions < V5.5.0), SCALANCE X201-3P IRT PRO (All versions < V5.5.0), SCALANCE X202-2IRT (All versions < V5.5.0), SCALANCE X202-2P IRT (All versions < V5.5.0), SCALANCE X202-2P IRT PRO (All versions < V5.5.0), SCALANCE X204-2 (All versions < V5.2.5), SCALANCE X204-2FM (All versions < V5.2.5), SCALANCE X204-2LD (All versions < V5.2.5), SCALANCE X204-2LD TS (All versions < V5.2.5), SCALANCE X204-2TS (All versions < V5.2.5), SCALANCE X204IRT (All versions < V5.5.0), SCALANCE X204IRT PRO (All versions < V5.5.0), SCALANCE X206-1 (All versions < V5.2.5), SCALANCE X206-1LD (All versions < V5.2.5), SCALANCE X208 (All versions < V5.2.5), SCALANCE X208PRO (All versions < V5.2.5), SCALANCE X212-2 (All versions < V5.2.5), SCALANCE X212-2LD (All versions < V5.2.5), SCALANCE X216 (All versions < V5.2.5), SCALANCE X224 (All versions < V5.2.5), SCALANCE XF201-3P IRT (All versions < V5.5.0), SCALANCE XF202-2P IRT (All versions < V5.5.0), SCALANCE XF204 (All versions < V5.2.5), SCALANCE XF204-2 (All versions < V5.2.5), SCALANCE XF204-2BA IRT (All versions < V5.5.0), SCALANCE XF204IRT (All versions < V5.5.0), SCALANCE XF206-1 (All versions < V5.2.5), SCALANCE XF208 (All versions < V5.2.5), SIPLUS NET SCALANCE X202-2P IRT (All versions < V5.5.0). There is a cross-site scripting vulnerability on the affected devices, that if used by a threat actor, it could result in session hijacking.
Affected products
30- Range: All versions < V5.5.0
All versions < V5.5.0+ 2 more
- (no CPE)range: All versions < V5.5.0
- (no CPE)range: All versions < V5.5.0
- (no CPE)range: All versions < V5.5.0
- Range: All versions < V5.5.0
All versions < V5.5.0+ 3 more
- (no CPE)range: All versions < V5.5.0
- (no CPE)range: All versions < V5.5.0
- (no CPE)range: All versions < V5.5.0
- (no CPE)range: All versions < V5.5.0
All versions < V5.2.5+ 8 more
- (no CPE)range: All versions < V5.2.5
- (no CPE)range: All versions < V5.2.5
- (no CPE)range: All versions < V5.2.5
- (no CPE)range: All versions < V5.2.5
- (no CPE)range: All versions < V5.5.0
- (no CPE)range: All versions < V5.5.0
- (no CPE)range: All versions < V5.2.5
- (no CPE)range: All versions < V5.2.5
- (no CPE)range: All versions < V5.2.5
- Siemens/SCALANCE X204-2LD TSv5Range: All versions < V5.2.5
- Siemens/SCALANCE X206-1LDv5Range: All versions < V5.2.5
- Siemens/SCALANCE X208PROv5Range: All versions < V5.2.5
- Range: All versions < V5.2.5
- Siemens/SCALANCE X212-2LDv5Range: All versions < V5.2.5
- Range: All versions < V5.2.5
All versions < V5.2.5+ 4 more
- (no CPE)range: All versions < V5.2.5
- (no CPE)range: All versions < V5.2.5
- (no CPE)range: All versions < V5.5.0
- (no CPE)range: All versions < V5.2.5
- (no CPE)range: All versions < V5.2.5
- Range: All versions < V5.5.0
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1News mentions
0No linked articles in our index yet.