Vulnerabilities > Siemens > Scalance X 300Eec
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2015-01-21 | CVE-2014-8479 | Improper Input Validation vulnerability in Siemens products The FTP server on Siemens SCALANCE X-300 switches with firmware before 4.0 and SCALANCE X 408 switches with firmware before 4.0 allows remote authenticated users to cause a denial of service (reboot) via crafted FTP packets. | 6.8 |
2015-01-21 | CVE-2014-8478 | Path Traversal vulnerability in Siemens products The web server on Siemens SCALANCE X-300 switches with firmware before 4.0 and SCALANCE X 408 switches with firmware before 4.0 allows remote attackers to cause a denial of service (reboot) via malformed HTTP requests. | 7.8 |
2012-04-18 | CVE-2012-1802 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Siemens products Buffer overflow in the embedded web server on the Siemens Scalance X Industrial Ethernet switch X414-3E before 3.7.1, X308-2M before 3.7.2, X-300EEC before 3.7.2, XR-300 before 3.7.2, and X-300 before 3.7.2 allows remote attackers to cause a denial of service (device reboot) or possibly execute arbitrary code via a malformed URL. | 7.8 |