Siemens Scalance M876-3 (Rok)

32 CVEs affecting Siemens Scalance M876-3 (Rok). Latest disclosed: 2026-05-12. Critical: 2, High: 14.

Top CVEs affecting Siemens Scalance M876-3 (Rok)
CVESeverityScorePublishedSummary
CVE-2023-44373Critical9.12023-11-14Affected devices do not properly sanitize an input field. This could allow an authenticated remote attacker with administrative privileges to inject code or s…
CVE-2022-36323Critical9.12022-08-10Affected devices do not properly sanitize an input field. This could allow an authenticated remote attacker with administrative privileges to inject code or s…
CVE-2022-31765High8.82022-10-11Affected devices do not properly authorize the change password function of the web interface. This could allow low privileged users to escalate their privileg…
CVE-2022-31766High8.62022-10-11A vulnerability has been identified in RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2) (All versions < V7.1.2), RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2D…
CVE-2022-34821High7.62022-07-12A vulnerability has been identified in RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2), RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2), SCALANCE M804PB (6G…
CVE-2025-40833High7.52026-05-12The affected devices contain a null pointer dereference vulnerability while processing specially crafted IPv4 requests. This could allow an attacker to cause d…
CVE-2022-36324High7.52022-08-10Affected devices do not properly handle the renegotiation of SSL/TLS parameters. This could allow an unauthenticated remote attacker to bypass the TCP brute fo…
CVE-2020-28400High7.52021-07-13Affected devices contain a vulnerability that allows an unauthenticated attacker to trigger a denial of service condition. The vulnerability can be triggered i…
CVE-2019-13946High7.52020-02-11Profinet-IO (PNIO) stack versions prior V06.00 do not properly limit internal resource allocation when multiple legitimate diagnostic package requests are sent…
CVE-2024-50572High7.22024-11-12A vulnerability has been identified in RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2) (All versions < V8.2), RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2…
CVE-2024-50557High7.22024-11-12A vulnerability has been identified in RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2) (All versions < V8.2), RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2…
CVE-2024-41976High7.22024-08-13A vulnerability has been identified in RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2) (All versions < V8.1), RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2…
CVE-2023-49692High7.22023-12-12A vulnerability has been identified in RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2) (All versions < V7.2.2), RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2D…
CVE-2023-49691High7.22023-12-12A vulnerability has been identified in RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2) (All versions < V8.0), RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2…
CVE-2023-44317High7.22023-11-14A vulnerability has been identified in RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2) (All versions < V7.2.2), RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2D…
CVE-2024-41977High7.12024-08-13A vulnerability has been identified in RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2) (All versions < V8.1), RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2…
CVE-2022-36325Medium6.82022-08-10Affected devices do not properly sanitize data introduced by an user when rendering the web interface. This could allow an authenticated remote attacker with a…
CVE-2024-41978Medium6.52024-08-13A vulnerability has been identified in RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2) (All versions < V8.1), RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2…
CVE-2023-44374Medium6.52023-11-14A vulnerability has been identified in RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2) (All versions < V8.0), RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2…
CVE-2022-46140Medium6.52022-12-13Affected devices use a weak encryption scheme to encrypt the debug zip file. This could allow an authenticated attacker to decrypt the contents of the file and…