CVE-2020-15800

CVE-2020-15800

Vendor Siemens
Product SCALANCE X-200 switch family (incl. SIPLUS NET variants)
Weakness CWE-122
Published January 12, 2021
Last update August 4, 2024

CVSS base score

What the vulnerability does

01Description

A vulnerability has been identified in SCALANCE X-200 switch family (incl. SIPLUS NET variants) (All versions < V5.2.5), SCALANCE X-200IRT switch family (incl. SIPLUS NET variants) (All versions < V5.5.0), SCALANCE X-300 switch family (incl. X408 and SIPLUS NET variants) (All versions < V4.1.0). The webserver of the affected devices contains a vulnerability that may lead to a heap overflow condition. An attacker could cause this condition on the webserver by sending specially crafted requests. This could stop the webserver temporarily.

Key dates

02Disclosure timeline

January 12, 2021 CVE published
August 4, 2024 Record updated