cbcvebase.
CVE-2023-44321
published 2023-11-14

CVE-2023-44321: Affected devices do not properly validate the length of inputs when performing certain configuration changes in the web interface allowing an authenticated…

medium5.1CVSS 4.0
AVNACLATNPRHUINVCNVINVALSCNSINSANEXCRXIRXARXMAVXMACXMATXMPRXMUIXMVCXMVIXMVAXMSCXMSIXMSAXSXAUXRXVXREXUX
Affected devices do not properly validate the length of inputs when performing certain configuration changes in the web interface allowing an authenticated attacker to cause a denial of service condition. The device needs to be restarted for the web interface to become available again.

Affected

137 ranges· showing 25
VendorProductVersion rangeFixed in
siemens6ag1206-2bb00-7ac2_firmware< 4.54.5
siemens6ag1206-2bs00-7ac2_firmware< 4.54.5
siemens6ag1208-0ba00-7ac2_firmware< 4.54.5
siemens6ag1216-4bs00-7ac2_firmware< 4.54.5
siemens6gk5204-0ba00-2gf2_firmware< 4.54.5
siemens6gk5204-0ba00-2yf2_firmware< 4.54.5
siemens6gk5204-2aa00-2gf2_firmware< 4.54.5
siemens6gk5204-2aa00-2yf2_firmware< 4.54.5
siemens6gk5205-3bb00-2ab2_firmware< 4.54.5
siemens6gk5205-3bb00-2tb2_firmware< 4.54.5
siemens6gk5205-3bd00-2ab2_firmware< 4.54.5
siemens6gk5205-3bd00-2tb2_firmware< 4.54.5
siemens6gk5205-3bf00-2ab2_firmware< 4.54.5
siemens6gk5205-3bf00-2tb2_firmware<= 4.5
siemens6gk5206-2bb00-2ac2_firmware< 4.54.5
siemens6gk5206-2bd00-2ac2_firmware< 4.54.5
siemens6gk5206-2bs00-2ac2_firmware< 4.54.5
siemens6gk5206-2bs00-2fc2_firmware< 4.54.5
siemens6gk5206-2gs00-2ac2_firmware< 4.54.5
siemens6gk5206-2gs00-2fc2_firmware< 4.54.5
siemens6gk5206-2gs00-2tc2_firmware< 4.54.5
siemens6gk5206-2rs00-2ac2_firmware< 4.54.5
siemens6gk5206-2rs00-5ac2_firmware< 4.54.5
siemens6gk5206-2rs00-5fc2_firmware< 4.54.5
siemens6gk5208-0ba00-2ab2_firmware< 4.54.5