Vulnerabilities > Siemens > Scalance X 300 Series Firmware

DATE CVE VULNERABILITY TITLE RISK
2015-01-21 CVE-2014-8479 Improper Input Validation vulnerability in Siemens products
The FTP server on Siemens SCALANCE X-300 switches with firmware before 4.0 and SCALANCE X 408 switches with firmware before 4.0 allows remote authenticated users to cause a denial of service (reboot) via crafted FTP packets.
network
low complexity
siemens CWE-20
6.8
6.8
2015-01-21 CVE-2014-8478 Path Traversal vulnerability in Siemens products
The web server on Siemens SCALANCE X-300 switches with firmware before 4.0 and SCALANCE X 408 switches with firmware before 4.0 allows remote attackers to cause a denial of service (reboot) via malformed HTTP requests.
network
low complexity
siemens CWE-22
7.8
7.8