Buffer Overflow Vulnerability in Siemens Scalance X Industrial Ethernet Switch
CVE-2012-1802

Currently unrated

Key Information:

Vendor: Siemens
Status: Scalance X414-3e Firmware; Scalance X414-3e
Vendor: CVE Published:; 18 April 2012

Summary

A buffer overflow vulnerability exists in the embedded web server of Siemens Scalance X Industrial Ethernet switches. This flaw affects specific models and allows remote attackers to exploit malformed URLs, resulting in potential device reboots or arbitrary code execution. It poses significant risks for network integrity and operational continuity in industrial environments.

References

http://osvdb.org/81032

vdb-entryx_refsource_OSVDB

http://www.us-cert.gov/control_systems/pdf/ICSA-12-102-04...

x_refsource_MISC

http://www.siemens.com/corporate-technology/pool/de/forsc...

x_refsource_CONFIRM

Timeline

Vulnerability published
Apr 18, 2012
Vulnerability Reserved
Mar 21, 2012