Buffer overflow in Siemens Scalance X200-4p Irt

CVE-2021-25669

A vulnerability has been identified in SCALANCE X200-4P IRT (All versions < 5.5.1), SCALANCE X201-3P IRT (All versions < 5.5.1), SCALANCE X201-3P IRT PRO (All versions < 5.5.1), SCALANCE X202-2 IRT (All versions < 5.5.1), SCALANCE X202-2P…

Vulnerability class: Buffer Overflow

EPSS: 0.017 (82.7th percentile) — read the EPSS interpretation.

Affected products

Siemens Scalance X200-4p Irt — versions All versions < 5.5.1
Siemens Scalance X201-3p Irt — versions All versions < 5.5.1
Siemens Scalance X201-3p Irt Pro — versions All versions < 5.5.1
Siemens Scalance X202-2 Irt — versions All versions < 5.5.1
Siemens Scalance X202-2p Irt (Incl. Siplus Net Variant) — versions All versions < 5.5.1
Siemens Scalance X202-2p Irt Pro — versions All versions < 5.5.1
Siemens Scalance X204-2fm — versions All versions < V5.2.5
Siemens Scalance X204-2 (Incl. Siplus Net Variant) — versions All versions < V5.2.5
Siemens Scalance X204-2ld (Incl. Siplus Net Variant) — versions All versions < V5.2.5
Siemens Scalance X204-2ld Ts — versions All versions < V5.2.5

Weakness classification (CWE)

CWE-121 — Stack-based Buffer Overflow

References

cert-portal.siemens.com/productcert/pdf/ssa-187092.pdf (x_refsource_MISC)