QID 591035
Date Published: 2022-09-16
QID 591035: Siemens SCALANCE FragAttacks Multiple Vulnerabilities (ICSA-22-104-04) (SSA-913875)
AFFECTED PRODUCTS
The following Siemens products are affected:
SCALANCE W721-1 RJ45: All versions
SCALANCE W722-1 RJ45: All versions
SCALANCE W734-1 RJ45: All versions
SCALANCE W738-1 M12: All versions
SCALANCE W748-1 M12: All versions
SCALANCE W738-1 RJ45: All versions
SCALANCE W761-1 RJ45: All versions
SCALANCE W774-1 M12 EEC: All versions
SCALANCE W774-1 RJ45: All versions
SCALANCE W778-1 M12 EEC: All versions
SCALANCE W786-1 RJ45: All versions
SCALANCE W786-2 RJ45: All versions
SCALANCE W786-2 SFP: All versions
SCALANCE W786-2IA RJ45: All versions
SCALANCE W788-1 M12: All versions
SCALANCE W788-1 RJ45: All versions
SCALANCE W788-2 M12: All versions
SCALANCE W788-1 M12 EEC: All versions
SCALANCE W788-2 RJ45: All versions
SCALANCE W1748-1 M12: All versions prior to v3.0.0
SCALANCE W1750D M12: All versions prior to v8.7.1.3
SCALANCE W1788-1 M12: All versions prior to v3.0.0
SCALANCE W1788-2 EEC M12: All versions prior to v3.0.0
SCALANCE W1788-2 M12: All versions prior to v3.0.0
SCALANCE W1788-2IA M12: All versions prior to v3.0.0
SCALANCE WAM766-1: All versions
SCALANCE WAM766-1 EEC: All versions
SCALANCE WUM763-1: All versions
SCALANCE WUM766-1: All versions
QID Detection Logic (Authenticated):
QID checks for the Vulnerable version of using passive scanning
Successful exploitation of these vulnerabilities could allow an attacker within Wi-Fi range to forge encrypted frames, which could result in sensitive data disclosure and traffic manipulation.
Customers are advised to refer to CERT MITIGATIONS section ICSA-22-104-04 for affected packages and patching details.
- ICSA-22-104-04 -
www.us-cert.gov/ics/advisories/ICSA-22-104-04
CVEs related to QID 591035
| Advisory ID | Software | Component | Link |
|---|---|---|---|
| ICSA-22-104-04 |
www.us-cert.gov/ics/advisories/ICSA-22-104-04 |