Vulnerabilities > Siemens > Scalance X 300

DATE CVE VULNERABILITY TITLE RISK
2015-01-21 CVE-2014-8479 Improper Input Validation vulnerability in Siemens products
The FTP server on Siemens SCALANCE X-300 switches with firmware before 4.0 and SCALANCE X 408 switches with firmware before 4.0 allows remote authenticated users to cause a denial of service (reboot) via crafted FTP packets.
network
low complexity
siemens CWE-20
6.8
6.8
2015-01-21 CVE-2014-8478 Path Traversal vulnerability in Siemens products
The web server on Siemens SCALANCE X-300 switches with firmware before 4.0 and SCALANCE X 408 switches with firmware before 4.0 allows remote attackers to cause a denial of service (reboot) via malformed HTTP requests.
network
low complexity
siemens CWE-22
7.8
7.8
2012-04-18 CVE-2012-1802 Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Siemens products
Buffer overflow in the embedded web server on the Siemens Scalance X Industrial Ethernet switch X414-3E before 3.7.1, X308-2M before 3.7.2, X-300EEC before 3.7.2, XR-300 before 3.7.2, and X-300 before 3.7.2 allows remote attackers to cause a denial of service (device reboot) or possibly execute arbitrary code via a malformed URL.
network
low complexity
siemens CWE-119
7.8
7.8