CVE-2022-25754 — HIGH (8.8)

Q: How severe is CVE-2022-25754?

CVE-2022-25754 has been rated HIGH with a CVSS base score of 8.8/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2022-25754?

Check the references section above for vendor advisories and patch information. Affected products include: Siemens Scalance X302-7Eec Firmware, Siemens Scalance X302-7Eec, Siemens Scalance X304-2Fe Firmware, Siemens Scalance X304-2Fe, Siemens Scalance X306-1Ldfe Firmware.

Vulnerability Description

A vulnerability has been identified in SCALANCE X302-7 EEC (230V), SCALANCE X302-7 EEC (230V, coated), SCALANCE X302-7 EEC (24V), SCALANCE X302-7 EEC (24V, coated), SCALANCE X302-7 EEC (2x 230V), SCALANCE X302-7 EEC (2x 230V, coated), SCALANCE X302-7 EEC (2x 24V), SCALANCE X302-7 EEC (2x 24V, coated), SCALANCE X304-2FE, SCALANCE X306-1LD FE, SCALANCE X307-2 EEC (230V), SCALANCE X307-2 EEC (230V, coated), SCALANCE X307-2 EEC (24V), SCALANCE X307-2 EEC (24V, coated), SCALANCE X307-2 EEC (2x 230V), SCALANCE X307-2 EEC (2x 230V, coated), SCALANCE X307-2 EEC (2x 24V), SCALANCE X307-2 EEC (2x 24V, coated), SCALANCE X307-3, SCALANCE X307-3, SCALANCE X307-3LD, SCALANCE X307-3LD, SCALANCE X308-2, SCALANCE X308-2, SCALANCE X308-2LD, SCALANCE X308-2LD, SCALANCE X308-2LH, SCALANCE X308-2LH, SCALANCE X308-2LH+, SCALANCE X308-2LH+, SCALANCE X308-2M, SCALANCE X308-2M, SCALANCE X308-2M PoE, SCALANCE X308-2M PoE, SCALANCE X308-2M TS, SCALANCE X308-2M TS, SCALANCE X310, SCALANCE X310, SCALANCE X310FE, SCALANCE X310FE, SCALANCE X320-1 FE, SCALANCE X320-1-2LD FE, SCALANCE X408-2, SCALANCE XR324-12M (230V, ports on front), SCALANCE XR324-12M (230V, ports on front), SCALANCE XR324-12M (230V, ports on rear), SCALANCE XR324-12M (230V, ports on rear), SCALANCE XR324-12M (24V, ports on front), SCALANCE XR324-12M (24V, ports on front), SCALANCE XR324-12M (24V, ports on rear), SCALANCE XR324-12M (24V, ports on rear), SCALANCE XR324-12M TS (24V), SCALANCE XR324-12M TS (24V), SCALANCE XR324-4M EEC (100-240VAC/60-250VDC, ports on front), SCALANCE XR324-4M EEC (100-240VAC/60-250VDC, ports on front), SCALANCE XR324-4M EEC (100-240VAC/60-250VDC, ports on rear), SCALANCE XR324-4M EEC (100-240VAC/60-250VDC, ports on rear), SCALANCE XR324-4M EEC (24V, ports on front), SCALANCE XR324-4M EEC (24V, ports on front), SCALANCE XR324-4M EEC (24V, ports on rear), SCALANCE XR324-4M EEC (24V, ports on rear), SCALANCE XR324-4M EEC (2x 100-240VAC/60-250VDC, ports on front), SCALANCE XR324-4M EEC (2x 100-240VAC/60-250VDC, ports on front), SCALANCE XR324-4M EEC (2x 100-240VAC/60-250VDC, ports on rear), SCALANCE XR324-4M EEC (2x 100-240VAC/60-250VDC, ports on rear), SCALANCE XR324-4M EEC (2x 24V, ports on front), SCALANCE XR324-4M EEC (2x 24V, ports on front), SCALANCE XR324-4M EEC (2x 24V, ports on rear), SCALANCE XR324-4M EEC (2x 24V, ports on rear), SCALANCE XR324-4M PoE (230V, ports on front), SCALANCE XR324-4M PoE (230V, ports on rear), SCALANCE XR324-4M PoE (24V, ports on front), SCALANCE XR324-4M PoE (24V, ports on rear), SCALANCE XR324-4M PoE TS (24V, ports on front), SIPLUS NET SCALANCE X308-2. The integrated web server of the affected device could allow remote attackers to perform actions with the permissions of a victim user, provided the victim user has an active session and is induced to trigger the malicious request.

CVSS Score

8.8

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

HIGH

Affected Products

Vendor	Product	Versions
Siemens	Scalance X302-7Eec Firmware	< 4.1.4
Siemens	Scalance X302-7Eec	-
Siemens	Scalance X304-2Fe Firmware	< 4.1.4
Siemens	Scalance X304-2Fe	-
Siemens	Scalance X306-1Ldfe Firmware	< 4.1.4
Siemens	Scalance X306-1Ldfe	-
Siemens	Scalance X307-2Eec Firmware	< 4.1.4
Siemens	Scalance X307-2Eec	-
Siemens	Scalance X307-3 Firmware	< 4.1.4
Siemens	Scalance X307-3	-
Siemens	Scalance X307-3Ld Firmware	< 4.1.4
Siemens	Scalance X307-3Ld	-
Siemens	Scalance X308-2 Firmware	< 4.1.4
Siemens	Scalance X308-2	-
Siemens	Scalance X308-2Ld Firmware	< 4.1.4
Siemens	Scalance X308-2Ld	-
Siemens	Scalance X308-2Lh Firmware	< 4.1.4
Siemens	Scalance X308-2Lh	-
Siemens	Scalance X308-2Lh\+ Firmware	< 4.1.4
Siemens	Scalance X308-2Lh\+	-

Related Weaknesses (CWE)

CWE-352

References

https://cert-portal.siemens.com/productcert/pdf/ssa-836527.pdfMitigationPatchVendor Advisory
https://cert-portal.siemens.com/productcert/pdf/ssa-836527.pdfMitigationPatchVendor Advisory

FAQ

What is CVE-2022-25754?

CVE-2022-25754 is a vulnerability with a CVSS score of 8.8 (HIGH). A vulnerability has been identified in SCALANCE X302-7 EEC (230V), SCALANCE X302-7 EEC (230V, coated), SCALANCE X302-7 EEC (24V), SCALANCE X302-7 EEC (24V, coated), SCALANCE X302-7 EEC (2x 230V), SCAL...

How severe is CVE-2022-25754?

CVE-2022-25754 has been rated HIGH with a CVSS base score of 8.8/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2022-25754?

Check the references section above for vendor advisories and patch information. Affected products include: Siemens Scalance X302-7Eec Firmware, Siemens Scalance X302-7Eec, Siemens Scalance X304-2Fe Firmware, Siemens Scalance X304-2Fe, Siemens Scalance X306-1Ldfe Firmware.