CVE-2019-10927Improper Check or Handling of Exceptional Conditions in AG Scalance Sc-600

CWE-703Improper Check or Handling of Exceptional Conditions4 documents4 sources
Severity
6.5MEDIUMNVD
EPSS
0.6%
top 31.72%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
11
Siemens AG Scalance Sc-600Siemens AG Scalance Xb-200Siemens AG Scalance Xc-200+8 more
Timeline
PublishedAug 13
Latest updateMay 24

Description

A vulnerability has been identified in SCALANCE SC-600 (V2.0), SCALANCE XB-200 (V4.1), SCALANCE XC-200 (V4.1), SCALANCE XF-200BA (V4.1), SCALANCE XP-200 (V4.1), SCALANCE XR-300WG (V4.1). An authenticated attacker with network access to to port 22/tcp of an affected device may cause a Denial-of-Service condition. The security vulnerability could be exploited by an authenticated attacker with network access to the affected device. No user interaction is required to exploit this vulnerability. The

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 2.8 | Impact: 3.6

Affected Packages11 packages

Patches

Patch: cert-portal.siemens.comPatch: cert-portal.siemens.com

🔴Vulnerability Details

3
GHSA
GHSA-qwf6-8cjr-7638: A vulnerability has been identified in SCALANCE SC-600 (V22022-05-24
CVEList
CVE-2019-10927: A vulnerability has been identified in SCALANCE SC-600 (V22019-08-13
OSV
CVE-2019-10927: A vulnerability has been identified in SCALANCE SC-600 (V22019-08-13
CVE-2019-10927 — AG Scalance Sc-600 vulnerability | cvebase