Path Traversal in Siemens Scalance_x-300

CVE-2014-8478

The web server on Siemens SCALANCE X-300 switches with firmware before 4.0 and SCALANCE X 408 switches with firmware before 4.0 allows remote attackers to cause a denial of service (reboot) via malformed HTTP requests.

Vulnerability class: Path Traversal (Directory Traversal)

EPSS: 0.022 (80.3th percentile) — read the EPSS interpretation.

Affected products

Weakness classification (CWE)

References