CVE-2022-46355

CVE-2022-46355

Vendor Siemens

Product SCALANCE X204RNA (HSR)

Weakness CWE-200 · Info exposure

Published December 13, 2022

Last update April 22, 2025

View on NVD All CVEs

CVSS base score

—

What the vulnerability does

01Description

A vulnerability has been identified in SCALANCE X204RNA (HSR) (All versions < V3.2.7), SCALANCE X204RNA (PRP) (All versions < V3.2.7), SCALANCE X204RNA EEC (HSR) (All versions < V3.2.7), SCALANCE X204RNA EEC (PRP) (All versions < V3.2.7), SCALANCE X204RNA EEC (PRP/HSR) (All versions < V3.2.7). The affected products are vulnerable to an "Exposure of Sensitive Information to an Unauthorized Actor" vulnerability by leaking sensitive data in the HTTP Referer.

Key dates

02Disclosure timeline

December 13, 2022 CVE published

April 22, 2025 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2022-46355

Related vulnerabilities

Identifiers

CVE CVE-2022-46355

CWE CWE-200