Lucene search

[email protected]NVD:CVE-2022-36324

HistoryAug 10, 2022 - 12:15 p.m.

CVE-2022-36324

2022-08-1012:15:12

CWE-770

[email protected]

web.nvd.nist.gov

ssl/tls parameters

unauthenticated remote attacker

brute force prevention

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

0.002 Low

EPSS

Percentile

55.2%

JSON

Affected devices do not properly handle the renegotiation of SSL/TLS parameters. This could allow an unauthenticated remote attacker to bypass the TCP brute force prevention and lead to a denial of service condition for the duration of the attack.

Affected configurations

NVD

Node

siemensscalance_m-800_firmware

AND

siemensscalance_m-800Match-

Node

siemensscalance_s615_firmware

AND

siemensscalance_s615Match-

Node

siemensscalance_w700_ieee_802.11ax_firmware

AND

siemensscalance_w700_ieee_802.11axMatch-

Node

siemensscalance_w700_ieee_802.11n_firmware

AND

siemensscalance_w700_ieee_802.11nMatch-

Node

siemensscalance_w700_ieee_802.11ac_firmware

AND

siemensscalance_w700_ieee_802.11acMatch-

Node

siemensscalance_xb-200_firmware

AND

siemensscalance_xb-200Match-

Node

siemensscalance_xb205-3_firmware

AND

siemensscalance_xb205-3Match-

Node

siemensscalance_xb205-3ld_firmware

AND

siemensscalance_xb205-3ldMatch-

Node

siemensscalance_xb208_firmware

AND

siemensscalance_xb208Match-

Node

siemensscalance_xb213-3_firmware

AND

siemensscalance_xb213-3Match-

Node

siemensscalance_xb213-3ld_firmware

AND

siemensscalance_xb213-3ldMatch-

Node

siemensscalance_xb216_firmware

AND

siemensscalance_xb216Match-

Node

siemensscalance_xc-200_firmware

AND

siemensscalance_xc-200Match-

Node

siemensscalance_xc206-2_firmware

AND

siemensscalance_xc206-2Match-

Node

siemensscalance_xc206-2g_poe__firmware

AND

siemensscalance_xc206-2g_poe_Match-

Node

siemensscalance_xc206-2g_poe_eec_firmware

AND

siemensscalance_xc206-2g_poe_eecMatch-

Node

siemensscalance_xc206-2sfp_eec_firmware

AND

siemensscalance_xc206-2sfp_eecMatch-

Node

siemensscalance_xc206-2sfp_g_firmware

AND

siemensscalance_xc206-2sfp_gMatch-

Node

siemensscalance_xc206-2sfp_g_\(e\/ip\)_firmware

AND

siemensscalance_xc206-2sfp_g_\(e\/ip\)Match-

Node

siemensscalance_xc206-2sfp_g_eec_firmware

AND

siemensscalance_xc206-2sfp_g_eecMatch-

Node

siemensscalance_xc208_firmware

AND

siemensscalance_xc208Match-

Node

siemensscalance_xc208eec_firmware

AND

siemensscalance_xc208eecMatch-

Node

siemensscalance_xc208g_firmware

AND

siemensscalance_xc208gMatch-

Node

siemensscalance_xc208g_\(e\/ip\)_firmware

AND

siemensscalance_xc208g_\(e\/ip\)Match-

Node

siemensscalance_xc208g_eec_firmware

AND

siemensscalance_xc208g_eecMatch-

Node

siemensscalance_xc208g_poe_firmware

AND

siemensscalance_xc208g_poeMatch-

Node

siemensscalance_xc216_firmware

AND

siemensscalance_xc216Match-

Node

siemensscalance_xc216-4c_firmware

AND

siemensscalance_xc216-4cMatch-

Node

siemensscalance_xc216-4c_g_firmware

AND

siemensscalance_xc216-4c_gMatch-

Node

siemensscalance_xc216-4c_g_\(e\/ip\)_firmware

AND

siemensscalance_xc216-4c_g_\(e\/ip\)Match-

Node

siemensscalance_xc216-4c_g_eec_firmware

AND

siemensscalance_xc216-4c_g_eecMatch-

Node

siemensscalance_xc216eec_firmware

AND

siemensscalance_xc216eecMatch-

Node

siemensscalance_xc224__firmware

AND

siemensscalance_xc224_Match-

Node

siemensscalance_xc224-4c_g__firmware

AND

siemensscalance_xc224-4c_g_Match-

Node

siemensscalance_xc224-4c_g_\(e\/ip\)_firmware

AND

siemensscalance_xc224-4c_g_\(e\/ip\)Match-

Node

siemensscalance_xc224-4c_g_eec_firmware

AND

siemensscalance_xc224-4c_g_eecMatch-

Node

siemensscalance_xf-200ba_firmware

AND

siemensscalance_xf-200baMatch-

Node

siemensscalance_xf204-2ba_dna_firmware

AND

siemensscalance_xf204-2ba_dnaMatch-

Node

siemensscalance_xf204-2ba_irt_firmware

AND

siemensscalance_xf204-2ba_irtMatch-

Node

siemensscalance_xm400_firmware

AND

siemensscalance_xm400Match-

Node

siemensscalance_xm408-4c_firmware

AND

siemensscalance_xm408-4cMatch-

Node

siemensscalance_xm408-4c_l3_firmware

AND

siemensscalance_xm408-4c_l3Match-

Node

siemensscalance_xm408-8c_firmware

AND

siemensscalance_xm408-8cMatch-

Node

siemensscalance_xm408-8c_l3_firmware

AND

siemensscalance_xm408-8c_l3Match-

Node

siemensscalance_xm416-4c_firmware

AND

siemensscalance_xm416-4cMatch-

Node

siemensscalance_xm416-4c_l3_firmware

AND

siemensscalance_xm416-4c_l3Match-

Node

siemensscalance_xp-200_firmware

AND

siemensscalance_xp-200Match-

Node

siemensscalance_xp208_firmware

AND

siemensscalance_xp208Match-

Node

siemensscalance_xp208_\(eip\)_firmware

AND

siemensscalance_xp208_\(eip\)Match-

Node

siemensscalance_xp208eec_firmware

AND

siemensscalance_xp208eecMatch-

Node

siemensscalance_xp208poe_eec_firmware

AND

siemensscalance_xp208poe_eecMatch-

Node

siemensscalance_xp216_firmware

AND

siemensscalance_xp216Match-

Node

siemensscalance_xp216_\(eip\)_firmware

AND

siemensscalance_xp216_\(eip\)Match-

Node

siemensscalance_xp216eec_firmware

AND

siemensscalance_xp216eecMatch-

Node

siemensscalance_xp216poe_eec_firmware

AND

siemensscalance_xp216poe_eecMatch-

Node

siemensscalance_xr-300_firmware

AND

siemensscalance_xr-300Match-

Node

siemensscalance_xr-300eec_firmware

AND

siemensscalance_xr-300eecMatch-

Node

siemensscalance_xr-300poe_firmware

AND

siemensscalance_xr-300poeMatch-

Node

siemensscalance_xr-300wg_firmware

AND

siemensscalance_xr-300wgMatch-

Node

siemensscalance_xr324-12m_firmware

AND

siemensscalance_xr324-12mMatch-

Node

siemensscalance_xr324-12m_ts_firmware

AND

siemensscalance_xr324-12m_tsMatch-

Node

siemensscalance_xr324-4m_eec_firmware

AND

siemensscalance_xr324-4m_eecMatch-

Node

siemensscalance_xr324-4m_poe_firmware

AND

siemensscalance_xr324-4m_poeMatch-

Node

siemensscalance_xr324-4m_poe_ts_firmware

AND

siemensscalance_xr324-4m_poe_tsMatch-

Node

siemensscalance_xr324wg_firmware

AND

siemensscalance_xr324wgMatch-

Node

siemensscalance_xr326-2c_poe_wg_firmware

AND

siemensscalance_xr326-2c_poe_wgMatch-

Node

siemensscalance_xr328-4c_wg_firmware

AND

siemensscalance_xr328-4c_wgMatch-

Node

siemensscalance_xr500_firmware

AND

siemensscalance_xr500Match-

Node

siemensscalance_xr524_firmware

AND

siemensscalance_xr524Match-

Node

siemensscalance_xr524-8c_firmware

AND

siemensscalance_xr524-8cMatch-

Node

siemensscalance_xr524-8c_l3_firmware

AND

siemensscalance_xr524-8c_l3Match-

Node

siemensscalance_xr526_firmware

AND

siemensscalance_xr526Match-

Node

siemensscalance_xr526-8c_firmware

AND

siemensscalance_xr526-8cMatch-

Node

siemensscalance_xr526-8c_l3_firmware

AND

siemensscalance_xr526-8c_l3Match-

Node

siemensscalance_xr528_firmware

AND

siemensscalance_xr528Match-

Node

siemensscalance_xr528-6m_firmware

AND

siemensscalance_xr528-6mMatch-

Node

siemensscalance_xr528-6m_2hr2_firmware

AND

siemensscalance_xr528-6m_2hr2Match-

Node

siemensscalance_xr528-6m_2hr2_l3_firmware

AND

siemensscalance_xr528-6m_2hr2_l3Match-

Node

siemensscalance_xr528-6m_l3_firmware

AND

siemensscalance_xr528-6m_l3Match-

Node

siemensscalance_xr552_firmware

AND

siemensscalance_xr552Match-

Node

siemensscalance_xr552-12_firmware

AND

siemensscalance_xr552-12Match-

Node

siemensscalance_xr552-12m_firmware

AND

siemensscalance_xr552-12mMatch-

Node

siemensscalance_xr552-12m_2hr2_firmware

AND

siemensscalance_xr552-12m_2hr2Match-

Node

siemensscalance_xr552-12m_2hr2_l3_firmware

AND

siemensscalance_xr552-12m_2hr2_l3Match-

References

cert-portal.siemens.com/productcert/pdf/ssa-710008.pdf

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

0.002 Low

EPSS

Percentile

55.2%

JSON

Related for NVD:CVE-2022-36324

nessus1 prion1 cve1 cvelist1 cnvd1 ics1