CVE-2023-29054
published 2023-04-11CVE-2023-29054: A vulnerability has been identified in SCALANCE X200-4P IRT (All versions < V5.5.2), SCALANCE X201-3P IRT (All versions < V5.5.2), SCALANCE X201-3P IRT PRO…
PriorityP341high7.4CVSS 3.1
AVNACHPRNUINSUCHIHAN
EPSS
0.26%
16.8th percentile
A vulnerability has been identified in SCALANCE X200-4P IRT (All versions < V5.5.2), SCALANCE X201-3P IRT (All versions < V5.5.2), SCALANCE X201-3P IRT PRO (All versions < V5.5.2), SCALANCE X202-2IRT (All versions < V5.5.2), SCALANCE X202-2IRT (All versions < V5.5.2), SCALANCE X202-2P IRT (All versions < V5.5.2), SCALANCE X202-2P IRT PRO (All versions < V5.5.2), SCALANCE X204IRT (All versions < V5.5.2), SCALANCE X204IRT (All versions < V5.5.2), SCALANCE X204IRT PRO (All versions < V5.5.2), SCALANCE XF201-3P IRT (All versions < V5.5.2), SCALANCE XF202-2P IRT (All versions < V5.5.2), SCALANCE XF204-2BA IRT (All versions < V5.5.2), SCALANCE XF204IRT (All versions < V5.5.2), SIPLUS NET SCALANCE X202-2P IRT (All versions < V5.5.2). The SSH server on affected devices is configured to offer weak ciphers by default.
This could allow an unauthorized attacker in a man-in-the-middle position to read and modify any data
passed over the connection between legitimate clients and the affected device.
Affected
26 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| siemens | scalance_x200-4p_irt | — | — |
| siemens | scalance_x200-4p_irt_firmware | < 5.5.2 | 5.5.2 |
| siemens | scalance_x201-3p_irt | — | — |
| siemens | scalance_x201-3p_irt_firmware | < 5.5.2 | 5.5.2 |
| siemens | scalance_x201-3p_irt_pro | — | — |
| siemens | scalance_x201-3p_irt_pro_firmware | < 5.5.2 | 5.5.2 |
| siemens | scalance_x202-2irt | — | — |
| siemens | scalance_x202-2irt_firmware | < 5.5.2 | 5.5.2 |
| siemens | scalance_x202-2p_irt | — | — |
| siemens | scalance_x202-2p_irt_firmware | < 5.5.2 | 5.5.2 |
| siemens | scalance_x202-2p_irt_pro | — | — |
| siemens | scalance_x202-2p_irt_pro_firmware | < 5.5.2 | 5.5.2 |
| siemens | scalance_x204irt | — | — |
| siemens | scalance_x204irt_firmware | < 5.5.2 | 5.5.2 |
| siemens | scalance_x204irt_pro | — | — |
| siemens | scalance_x204irt_pro_firmware | < 5.5.2 | 5.5.2 |
| siemens | scalance_xf201-3p_irt | — | — |
| siemens | scalance_xf201-3p_irt_firmware | < 5.5.2 | 5.5.2 |
| siemens | scalance_xf202-2p_irt | — | — |
| siemens | scalance_xf202-2p_irt_firmware | < 5.5.2 | 5.5.2 |
| siemens | scalance_xf204-2ba_irt | — | — |
| siemens | scalance_xf204-2ba_irt_firmware | < 5.5.2 | 5.5.2 |
| siemens | scalance_xf204irt | — | — |
| siemens | scalance_xf204irt_firmware | < 5.5.2 | 5.5.2 |
| siemens | siplus_net_scalance_x202-2p_irt | — | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-6488-g94h-5jh6: A vulnerability has been identified in SCALANCE X200-4P IRT (All versions < V5
ghsa_unreviewed·2023-04-11
CVE-2023-29054 [MEDIUM] CWE-326 GHSA-6488-g94h-5jh6: A vulnerability has been identified in SCALANCE X200-4P IRT (All versions < V5
A vulnerability has been identified in SCALANCE X200-4P IRT (All versions < V5.5.2), SCALANCE X201-3P IRT (All versions < V5.5.2), SCALANCE X201-3P IRT PRO (All versions < V5.5.2), SCALANCE X202-2IRT (All versions < V5.5.2), SCALANCE X202-2IRT (All versions < V5.5.2), SCALANCE X202-2P IRT (All versions < V5.5.2), SCALANCE X202-2P IRT PRO (All versions < V5.5.2), SCALANCE X204IRT (All versions < V5.5.2), SCALANCE X204IRT (All versions < V5.5.2), SCALANCE X204IRT PRO (All versions < V5.5.2), SCALANCE XF201-3P IRT (All versions < V5.5.2), SCALANCE XF202-2P IRT (All versions < V5.5.2), SCALANCE XF204-2BA IRT (All versions < V5.5.2), SCALANCE XF204IRT (All versions < V5.5.2), SIPLUS NET SCALANCE X202-2P IRT (All versions < V5.5.2). The SSH server on affected devices is configured to offer weak
CISA ICS
Siemens SCALANCE X-200IRT Devices
cisa_ics·2023-04-13
Siemens SCALANCE X-200IRT Devices
ICS Advisory
##
Siemens SCALANCE X-200IRT Devices
Release DateApril 13, 2023
Alert CodeICSA-23-103-05
As of January 10, 2023, CISA will no longer be updating ICS security advisories for Siemens product vulnerabilities beyond the initial advisory. For the most up-to-date information on vulnerabilities in this advisory, please see Siemens' ProductCERT Security Advisories (CERT Services | Services | Siemens Global).
## 1. EXECUTIVE SUMMARY
- CVSS v3 6.7
- ATTENTION: Exploitable with adjacent access
- Vendor: Siemens
- Equipment: SCALANCE X-200IRT Devices
- Vulnerability: Inadequate Encryption Strength
## 2. RISK EVALUATION
Successful exploitation of this vulnerability could allow an unauthorized attacker in a machine-in-the-middle position to read and modify
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2023-04-11
Published