Vulnerabilities > Siemens > Scalance S612 Firmware

DATE CVE VULNERABILITY TITLE RISK
2021-03-25 CVE-2021-3449 NULL Pointer Dereference vulnerability in multiple products
An OpenSSL TLS server may crash if sent a maliciously crafted renegotiation ClientHello message from a client.
5.9
2020-03-10 CVE-2019-6585 Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in Siemens products
A vulnerability has been identified in SCALANCE S602 (All versions >= V3.0 and < V4.1), SCALANCE S612 (All versions >= V3.0 and < V4.1), SCALANCE S623 (All versions >= V3.0 and < V4.1), SCALANCE S627-2M (All versions >= V3.0 and < V4.1).
network
low complexity
siemens CWE-80
6.1
2020-02-11 CVE-2019-13926 Resource Exhaustion vulnerability in Siemens products
A vulnerability has been identified in SCALANCE S602 (All versions >= V3.0 and < V4.1), SCALANCE S612 (All versions >= V3.0 and < V4.1), SCALANCE S623 (All versions >= V3.0 and < V4.1), SCALANCE S627-2M (All versions >= V3.0 and < V4.1).
network
low complexity
siemens CWE-400
7.5
2020-02-11 CVE-2019-13925 Resource Exhaustion vulnerability in Siemens products
A vulnerability has been identified in SCALANCE S602 (All versions >= V3.0 and < V4.1), SCALANCE S612 (All versions >= V3.0 and < V4.1), SCALANCE S623 (All versions >= V3.0 and < V4.1), SCALANCE S627-2M (All versions >= V3.0 and < V4.1).
network
low complexity
siemens CWE-400
7.5
2018-12-13 CVE-2018-16555 Cross-site Scripting vulnerability in Siemens products
A vulnerability has been identified in SCALANCE S602 (All versions < V4.0.1.1), SCALANCE S612 (All versions < V4.0.1.1), SCALANCE S623 (All versions < V4.0.1.1), SCALANCE S627-2M (All versions < V4.0.1.1).
network
low complexity
siemens CWE-79
5.4