阿里云漏洞库

漏洞描述

A vulnerability has been identified in SCALANCE X200-4P IRT (All versions), SCALANCE X200-4P IRT (All versions), SCALANCE X201-3P IRT (All versions), SCALANCE X201-3P IRT (All versions), SCALANCE X201-3P IRT PRO (All versions), SCALANCE X201-3P IRT PRO (All versions), SCALANCE X202-2IRT (All versions), SCALANCE X202-2IRT (All versions), SCALANCE X202-2P IRT (All versions), SCALANCE X202-2P IRT (All versions), SCALANCE X202-2P IRT PRO (All versions), SCALANCE X202-2P IRT PRO (All versions), SCALANCE X204-2 (All versions < V5.2.6), SCALANCE X204-2FM (All versions < V5.2.6), SCALANCE X204-2LD (All versions < V5.2.6), SCALANCE X204-2LD TS (All versions < V5.2.6), SCALANCE X204-2TS (All versions < V5.2.6), SCALANCE X204IRT (All versions), SCALANCE X204IRT (All versions), SCALANCE X204IRT PRO (All versions), SCALANCE X204IRT PRO (All versions), SCALANCE X206-1 (All versions < V5.2.6), SCALANCE X206-1LD (All versions < V5.2.6), SCALANCE X208 (All versions < V5.2.6), SCALANCE X208PRO (All versions < V5.2.6), SCALANCE X212-2 (All versions < V5.2.6), SCALANCE X212-2LD (All versions < V5.2.6), SCALANCE X216 (All versions < V5.2.6), SCALANCE X224 (All versions < V5.2.6), SCALANCE XF201-3P IRT (All versions), SCALANCE XF202-2P IRT (All versions), SCALANCE XF204 (All versions < V5.2.6), SCALANCE XF204-2 (All versions < V5.2.6), SCALANCE XF204-2BA IRT (All versions), SCALANCE XF204IRT (All versions), SCALANCE XF204IRT (All versions), SCALANCE XF206-1 (All versions < V5.2.6), SCALANCE XF208 (All versions < V5.2.6). Affected devices do not properly validate the GET parameter XNo of incoming HTTP requests. This could allow an unauthenticated remote attacker to crash affected devices.

解决建议

建议您更新当前系统或软件至最新版，完成漏洞的修复。

参考链接
https://cert-portal.siemens.com/productcert/pdf/ssa-310038.pdf

受影响软件情况

1
#	类型	厂商	产品	版本	影响面
	运行在以下环境
	系统	siemens	scalance_x200-4p_irt_firmware	*	-
	运行在以下环境
	系统	siemens	scalance_x201-3p_irt_firmware	*	-
	运行在以下环境
	系统	siemens	scalance_x201-3p_irt_pro_firmware	*	-
	运行在以下环境
	系统	siemens	scalance_x202-2irt_firmware	*	-
	运行在以下环境
	系统	siemens	scalance_x202-2p_irt_firmware	*	-
	运行在以下环境
	系统	siemens	scalance_x202-2p_irt_pro_firmware	*	-
	运行在以下环境
	系统	siemens	scalance_x204-2fm_firmware	*		Up to (excluding) 5.2.6
	运行在以下环境
	系统	siemens	scalance_x204-2ld_firmware	*		Up to (excluding) 5.2.6
	运行在以下环境
	系统	siemens	scalance_x204-2ld_ts_firmware	*		Up to (excluding) 5.2.6
	运行在以下环境
	系统	siemens	scalance_x204-2ts_firmware	*		Up to (excluding) 5.2.6
	运行在以下环境
	系统	siemens	scalance_x204-2_firmware	*		Up to (excluding) 5.2.6
	运行在以下环境
	系统	siemens	scalance_x204irt_firmware	*	-
	运行在以下环境
	系统	siemens	scalance_x204irt_pro_firmware	*	-
	运行在以下环境
	系统	siemens	scalance_x206-1ld_firmware	*		Up to (excluding) 5.2.6
	运行在以下环境
	系统	siemens	scalance_x206-1_firmware	*		Up to (excluding) 5.2.6
	运行在以下环境
	系统	siemens	scalance_x208_firmware	*		Up to (excluding) 5.2.6
	运行在以下环境
	系统	siemens	scalance_x208_pro_firmware	*		Up to (excluding) 5.2.6
	运行在以下环境
	系统	siemens	scalance_x212-2ld_firmware	*		Up to (excluding) 5.2.6
	运行在以下环境
	系统	siemens	scalance_x212-2_firmware	*		Up to (excluding) 5.2.6
	运行在以下环境
	系统	siemens	scalance_x216_firmware	*		Up to (excluding) 5.2.6
	运行在以下环境
	系统	siemens	scalance_x224_firmware	*		Up to (excluding) 5.2.6
	运行在以下环境
	系统	siemens	scalance_xf201-3p_irt_firmware	*	-
	运行在以下环境
	系统	siemens	scalance_xf202-2p_irt_firmware	*	-
	运行在以下环境
	系统	siemens	scalance_xf204-2ba_irt_firmware	*	-
	运行在以下环境
	系统	siemens	scalance_xf204-2_firmware	*		Up to (excluding) 5.2.6
	运行在以下环境
	系统	siemens	scalance_xf204irt_firmware	*	-
	运行在以下环境
	系统	siemens	scalance_xf204_firmware	*		Up to (excluding) 5.2.6
	运行在以下环境
	系统	siemens	scalance_xf206-1_firmware	*		Up to (excluding) 5.2.6
	运行在以下环境
	系统	siemens	scalance_xf208_firmware	*		Up to (excluding) 5.2.6
	运行在以下环境
	硬件	siemens	scalance_x200-4p_irt	-	-
	运行在以下环境
	硬件	siemens	scalance_x201-3p_irt	-	-
	运行在以下环境
硬件	siemens	scalance_x201-3p_irt_pro	-	-
运行在以下环境
硬件	siemens	scalance_x202-2irt	-	-
运行在以下环境
硬件	siemens	scalance_x202-2p_irt	-	-
运行在以下环境
硬件	siemens	scalance_x202-2p_irt_pro	-	-
运行在以下环境
硬件	siemens	scalance_x204-2	-	-
运行在以下环境
硬件	siemens	scalance_x204-2fm	-	-
运行在以下环境
硬件	siemens	scalance_x204-2ld	-	-
运行在以下环境
硬件	siemens	scalance_x204-2ld_ts	-	-
运行在以下环境
硬件	siemens	scalance_x204-2ts	-	-
运行在以下环境
硬件	siemens	scalance_x204irt	-	-
运行在以下环境
硬件	siemens	scalance_x204irt_pro	-	-
运行在以下环境
硬件	siemens	scalance_x206-1	-	-
运行在以下环境
硬件	siemens	scalance_x206-1ld	-	-
运行在以下环境
硬件	siemens	scalance_x208	-	-
运行在以下环境
硬件	siemens	scalance_x208_pro	-	-
运行在以下环境
硬件	siemens	scalance_x212-2	-	-
运行在以下环境
硬件	siemens	scalance_x212-2ld	-	-
运行在以下环境
硬件	siemens	scalance_x216	-	-
运行在以下环境
硬件	siemens	scalance_x224	-	-
运行在以下环境
硬件	siemens	scalance_xf201-3p_irt	-	-
运行在以下环境
硬件	siemens	scalance_xf202-2p_irt	-	-
运行在以下环境
硬件	siemens	scalance_xf204	-	-
运行在以下环境
硬件	siemens	scalance_xf204-2	-	-
运行在以下环境
硬件	siemens	scalance_xf204-2ba_irt	-	-
运行在以下环境
硬件	siemens	scalance_xf204irt	-	-
运行在以下环境
硬件	siemens	scalance_xf206-1	-	-
运行在以下环境
硬件	siemens	scalance_xf208	-	-

攻击路径

网络
攻击复杂度

低
权限要求

无
影响范围

未更改
用户交互

无
可用性

高
保密性

无
完整性

无

CWE-ID	漏洞类型
CWE-120	未进行输入大小检查的缓冲区拷贝（传统缓冲区溢出）

siemens scalance_x204-2_firmware 未进行输入大小检查的缓冲区拷贝（传统缓冲区溢出）

漏洞描述

解决建议

参考链接

受影响软件情况