QID 590758
Date Published: 2022-06-23
QID 590758: Siemens VxWorks-based Industrial Products Vulnerability (ICSA-21-194-12) (SSA-560465)
AFFECTED PRODUCTS
Siemens reports this vulnerability affects the following Wind River VxWorks-based industrial products:
RUGGEDCOM WIN Subscriber Station: All versions
SCALANCE X200-4 P IRT: All versions
SCALANCE X201-3P IRT: All versions
SCALANCE X201-3P IRT PRO: All versions
SCALANCE X202-2 IRT: All versions
SCALANCE X202-2P IRT: All versions
SCALANCE X202-2P IRT PRO: All versions
SCALANCE X204 IRT: All versions
SCALANCE X204 IRT PRO: All versions
SCALANCE X204-2 (incl. SIPLUS NET variant): All versions
SCALANCE X204-2FM: All versions
SCALANCE X204-2LD (incl. SIPLUS NET variant): All versions
SCALANCE X204-2LD TS: All versions
SCALANCE X204-2TS: All versions
SCALANCE X206-1: All versions
SCALANCE X206-1LD: All versions
SCALANCE X208: All versions
SCALANCE X208 PRO: All versions
SCALANCE X212-2: All versions
SCALANCE X212-2LD: All versions
SCALANCE X216: All versions
SCALANCE X224: All versions
SCALANCE X300/X408 family (incl. SIPLUS NET variants): All versions
SCALANCE XF201-3P IRT: All versions
SCALANCE XF202-2P IRT: All versions
SCALANCE XF204: All versions
SCALANCE XF204 IRT: All versions
SCALANCE XF204-2: All versions
SCALANCE XF204-2BA IRT: All versions
SCALANCE XF206-1: All versions
SCALANCE XF208: All versions
SIMATIC RF 181 EIP: All versions
SIMATIC RF 182C: All versions
QID Detection Logic (Authenticated):
QID checks for the Vulnerable version of using passive scanning
Successful exploitation of this vulnerability could allow an attacker to cause a heap-based buffer overflow.
Customers are advised to refer to CERT MITIGATIONS section ICSA-21-194-12 for affected packages and patching details.
- ICSA-21-194-12 -
www.us-cert.gov/ics/advisories/ICSA-21-194-12
CVEs related to QID 590758
| Advisory ID | Software | Component | Link |
|---|---|---|---|
| ICSA-21-194-12 |
www.us-cert.gov/ics/advisories/ICSA-21-194-12 |