Path Traversal in Siemens Scalance_x-300
CVE-2014-8478
The web server on Siemens SCALANCE X-300 switches with firmware before 4.0 and SCALANCE X 408 switches with firmware before 4.0 allows remote attackers to cause a denial of service (reboot) via malformed HTTP requests.
Vulnerability class: Path Traversal (Directory Traversal)
EPSS: 0.022 (80.3th percentile) — read the EPSS interpretation.
Affected products
Weakness classification (CWE)
References
- cve@mitre.org (x_refsource_CONFIRM, Vendor Advisory)
- cve@mitre.org (x_refsource_CONFIRM)