-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
#####################################################
## N C S C ~ B E V E I L I G I N G S A D V I E S ##
#####################################################
Titel : Kwetsbaarheden verholpen in Siemens producten
Advisory ID : NCSC-2025-0160
Versie : 1.00
Kans : medium
CVE ID : CVE-2024-0056, CVE-2024-3596, CVE-2024-20672,
CVE-2024-23815, CVE-2024-30105, CVE-2024-32122,
CVE-2024-35264, CVE-2024-38081, CVE-2024-38095,
CVE-2024-43483, CVE-2024-43485, CVE-2024-51444,
CVE-2024-51445, CVE-2024-51446, CVE-2024-51447,
CVE-2024-52963, CVE-2025-24007, CVE-2025-24008,
CVE-2025-24009, CVE-2025-24510, CVE-2025-26389,
CVE-2025-26390, CVE-2025-30174, CVE-2025-30175,
CVE-2025-30176, CVE-2025-31929, CVE-2025-31930,
CVE-2025-32454, CVE-2025-40555, CVE-2025-40556,
CVE-2025-40566
(Details over de kwetsbaarheden kunt u vinden op
de Mitre website: https://cve.mitre.org/cve/)
Schade : high
Storing Passwords in a Recoverable Format
User Interface (UI) Misrepresentation of Critical
Information
Improper Enforcement of Message Integrity During
Transmission in a Communication Channel
Improper Validation of Integrity Check Value
Missing Authentication for Critical Function
Improper Input Validation
Cleartext Transmission of Sensitive Information
Unprotected Alternate Channel
Use of Password Hash Instead of Password for
Authentication
Authentication Bypass by Capture-replay
Observable Response Discrepancy
Improper Restriction of XML External Entity Reference
Out-of-bounds Write
Incorrect Permission Assignment for Critical Resource
Use of a Broken or Risky Cryptographic Algorithm
Initialization of a Resource with an Insecure Default
Expected Behavior Violation
Use After Free
Missing Immutable Root of Trust in Hardware
Insufficient Session Expiration
Improper Resource Shutdown or Release
Improper Link Resolution Before File Access ('Link
Following')
Improper Neutralization of Special Elements used in an
OS Command ('OS Command Injection')
Authentication Bypass by Spoofing
Exposure of Sensitive Information to an Unauthorized
Actor
Insufficiently Protected Credentials
Missing Encryption of Sensitive Data
Improper Neutralization of Input During Web Page
Generation ('Cross-site Scripting')
Use of Weak Hash
Inefficient Algorithmic Complexity
Out-of-bounds Read
Uncontrolled Resource Consumption
Improper Neutralization of Special Elements used in an
SQL Command ('SQL Injection')
Uitgiftedatum : 20250514
Toepassing : Siemens INTRALOG WMS
Siemens JT2Go (Application)
Siemens RUGGEDCOM APE1808
Siemens RUGGEDCOM APE1808 Firmware
Siemens RUGGEDCOM CROSSBOW
Siemens RUGGEDCOM CROSSBOW (Application)
Siemens RUGGEDCOM M2100
Siemens RUGGEDCOM M2100NC
Siemens RUGGEDCOM M2200
Siemens RUGGEDCOM M969
Siemens RUGGEDCOM RM1224 LTE(4G) EU
(6GK6108-4AM00-2BA2)
Siemens RUGGEDCOM RM1224 LTE(4G) NAM
(6GK6108-4AM00-2DA2)
Siemens RUGGEDCOM RMC30
Siemens RUGGEDCOM RMC8388 V4.X
Siemens RUGGEDCOM RMC8388 V5.X
Siemens RUGGEDCOM RMC8388NC V5.X
Siemens RUGGEDCOM ROS
Siemens RUGGEDCOM ROS V4.X NC products
Siemens RUGGEDCOM ROX MX5000
Siemens RUGGEDCOM ROX MX5000RE
Siemens RUGGEDCOM ROX RX1400
Siemens RUGGEDCOM ROX RX1500
Siemens RUGGEDCOM ROX RX1501
Siemens RUGGEDCOM ROX RX1510
Siemens RUGGEDCOM ROX RX1511
Siemens RUGGEDCOM ROX RX1512
Siemens RUGGEDCOM ROX RX1524
Siemens RUGGEDCOM ROX RX1536
Siemens RUGGEDCOM ROX RX5000
Siemens RUGGEDCOM RP110
Siemens RUGGEDCOM RP110NC
Siemens RUGGEDCOM RS1600
Siemens RUGGEDCOM RS1600F
Siemens RUGGEDCOM RS1600NC
Siemens RUGGEDCOM RS1600T
Siemens RUGGEDCOM RS400
Siemens RUGGEDCOM RS401
Siemens RUGGEDCOM RS416
Siemens RUGGEDCOM RS416NC
Siemens RUGGEDCOM RS416NCv2 V5.X
Siemens RUGGEDCOM RS416P
Siemens RUGGEDCOM RS416PNC
Siemens RUGGEDCOM RS416PNCv2 V5.X
Siemens RUGGEDCOM RS416Pv2 V4.X
Siemens RUGGEDCOM RS416Pv2 V5.X
Siemens RUGGEDCOM RS416v2 V4.X
Siemens RUGGEDCOM RS416v2 V5.X
Siemens RUGGEDCOM RS8000
Siemens RUGGEDCOM RS8000A
Siemens RUGGEDCOM RS8000H
Siemens RUGGEDCOM RS8000HNC
Siemens RUGGEDCOM RS8000T
Siemens RUGGEDCOM RS900
Siemens RUGGEDCOM RS900 (32M) V4.X
Siemens RUGGEDCOM RS900 (32M) V5.X
Siemens RUGGEDCOM RS900G
Siemens RUGGEDCOM RS900G (32M) V4.X
Siemens RUGGEDCOM RS900G (32M) V5.X
Siemens RUGGEDCOM RS900GNC(32M) V5.X
Siemens RUGGEDCOM RS900GP
Siemens RUGGEDCOM RS900GPNC
Siemens RUGGEDCOM RS900L
Siemens RUGGEDCOM RS900M-GETS-C01
Siemens RUGGEDCOM RS900M-GETS-XX
Siemens RUGGEDCOM RS900M-STND-C01
Siemens RUGGEDCOM RS900M-STND-XX
Siemens RUGGEDCOM RS900MNC-GETS-C01
Siemens RUGGEDCOM RS900MNC-GETS-XX
Siemens RUGGEDCOM RS900NC(32M) V5.X
Siemens RUGGEDCOM RS900W
Siemens RUGGEDCOM RS910
Siemens RUGGEDCOM RS910L
Siemens RUGGEDCOM RS910NC
Siemens RUGGEDCOM RS910W
Siemens RUGGEDCOM RS920L
Siemens RUGGEDCOM RS920W
Siemens RUGGEDCOM RS930L
Siemens RUGGEDCOM RS930W
Siemens RUGGEDCOM RS940G
Siemens RUGGEDCOM RS969
Siemens RUGGEDCOM RSG2100
Siemens RUGGEDCOM RSG2100 (32M) V4.X
Siemens RUGGEDCOM RSG2100 (32M) V5.X
Siemens RUGGEDCOM RSG2100NC(32M) V5.X
Siemens RUGGEDCOM RSG2100P
Siemens RUGGEDCOM RSG2100PNC
Siemens RUGGEDCOM RSG2200
Siemens RUGGEDCOM RSG2288 V4.X
Siemens RUGGEDCOM RSG2288 V5.X
Siemens RUGGEDCOM RSG2288NC V5.X
Siemens RUGGEDCOM RSG2300 V4.X
Siemens RUGGEDCOM RSG2300 V5.X
Siemens RUGGEDCOM RSG2300NC V5.X
Siemens RUGGEDCOM RSG2300P V4.X
Siemens RUGGEDCOM RSG2300P V5.X
Siemens RUGGEDCOM RSG2300PNC V5.X
Siemens RUGGEDCOM RSG2488 V4.X
Siemens RUGGEDCOM RSG2488 V5.X
Siemens RUGGEDCOM RSG2488NC V5.X
Siemens RUGGEDCOM RSG907R
Siemens RUGGEDCOM RSG908C
Siemens RUGGEDCOM RSG909R
Siemens RUGGEDCOM RSG910C
Siemens RUGGEDCOM RSG920P V4.X
Siemens RUGGEDCOM RSG920P V5.X
Siemens RUGGEDCOM RSG920PNC V5.X
Siemens RUGGEDCOM RSL910
Siemens RUGGEDCOM RSL910NC
Siemens RUGGEDCOM RST2228
Siemens RUGGEDCOM RST2228P
Siemens RUGGEDCOM RST2428P (6GK6242-6PA00)
Siemens RUGGEDCOM RST916C
Siemens RUGGEDCOM RST916P
Siemens RUGGEDCOM i800
Siemens RUGGEDCOM i801
Siemens RUGGEDCOM i802
Siemens RUGGEDCOM i802NC
Siemens RUGGEDCOM i803
Siemens RUGGEDCOM i803NC
Siemens RuggedCom ROX II Firmware
Siemens Ruggedcom I800Nc
Siemens Ruggedcom I801Nc
Siemens Ruggedcom M2100
Siemens Ruggedcom M969Nc
Siemens Ruggedcom Rmc30
Siemens Ruggedcom Rox Mx5000
Siemens Ruggedcom Rox Rx1500
Siemens Ruggedcom Rox Rx1501
Siemens Ruggedcom Rox Rx1512
Siemens Ruggedcom Rs1600Fnc
Siemens Ruggedcom Rs1600T
Siemens Ruggedcom Rs416
Siemens Ruggedcom Rs8000Anc
Siemens Ruggedcom Rs8000Nc
Siemens Ruggedcom Rs8000T
Siemens Ruggedcom Rs900Gp
Siemens Ruggedcom Rs900M-Gets-C01
Siemens Ruggedcom Rs900M-Gets-Xx
Siemens Ruggedcom Rs900M-Stnd-C01
Siemens Ruggedcom Rs900M-Stnd-Xx
Siemens Ruggedcom Rs900Mnc-Stnd-Xx
Siemens Ruggedcom Rs900Nc
Siemens Ruggedcom Rs910W
Siemens Ruggedcom Rs940Gnc
Siemens Ruggedcom Rsg2100
Siemens Ruggedcom Rsg2200
Siemens Ruggedcom Rsg2200Nc
Siemens Ruggedcom Rsg909R
Siemens Ruggedcom Rsl910Nc
Siemens Ruggedcom Rst2228
Siemens Ruggedcom Rst2228P
Siemens SCALANCE M804PB (6GK5804-0AP00-2AA2)
Siemens SCALANCE M812-1 ADSL-Router
(6GK5812-1AA00-2AA2)
Siemens SCALANCE M812-1 ADSL-Router
(6GK5812-1BA00-2AA2)
Siemens SCALANCE M816-1 ADSL-Router
(6GK5816-1AA00-2AA2)
Siemens SCALANCE M816-1 ADSL-Router
(6GK5816-1BA00-2AA2)
Siemens SCALANCE M826-2 SHDSL-Router
(6GK5826-2AB00-2AB2)
Siemens SCALANCE M874-2 (6GK5874-2AA00-2AA2)
Siemens SCALANCE M874-3 (6GK5874-3AA00-2AA2)
Siemens SCALANCE M874-3 3G-Router (CN)
(6GK5874-3AA00-2FA2)
Siemens SCALANCE M876-3 (6GK5876-3AA02-2BA2)
Siemens SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
Siemens SCALANCE M876-4 (6GK5876-4AA10-2BA2)
Siemens SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
Siemens SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
Siemens SCALANCE MUM853-1 (A1) (6GK5853-2EA10-2AA1)
Siemens SCALANCE MUM853-1 (B1) (6GK5853-2EA10-2BA1)
Siemens SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
Siemens SCALANCE MUM856-1 (A1) (6GK5856-2EA10-3AA1)
Siemens SCALANCE MUM856-1 (B1) (6GK5856-2EA10-3BA1)
Siemens SCALANCE MUM856-1 (CN) (6GK5856-2EA00-3FA1)
Siemens SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
Siemens SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
Siemens SCALANCE S615 EEC LAN-Router
(6GK5615-0AA01-2AA2)
Siemens SCALANCE S615 LAN-Router (6GK5615-0AA00-2AA2)
Siemens SCALANCE SC-600 Firmware
Siemens SCALANCE SC622-2C (6GK5622-2GS00-2AC2)
Siemens SCALANCE SC626-2C (6GK5626-2GS00-2AC2)
Siemens SCALANCE SC632-2C (6GK5632-2GS00-2AC2)
Siemens SCALANCE SC636-2C (6GK5636-2GS00-2AC2)
Siemens SCALANCE SC642-2C (6GK5642-2GS00-2AC2)
Siemens SCALANCE SC646-2C (6GK5646-2GS00-2AC2)
Siemens SCALANCE W1748-1 M12 (6GK5748-1GY01-0AA0)
Siemens SCALANCE W1748-1 M12 (6GK5748-1GY01-0TA0)
Siemens SCALANCE W1788-1 M12 (6GK5788-1GY01-0AA0)
Siemens SCALANCE W1788-2 EEC M12 (6GK5788-2GY01-0TA0)
Siemens SCALANCE W1788-2 M12 (6GK5788-2GY01-0AA0)
Siemens SCALANCE W1788-2IA M12 (6GK5788-2HY01-0AA0)
Siemens SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AA0)
Siemens SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AB0)
Siemens SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AA0)
Siemens SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AB0)
Siemens SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AC0)
Siemens SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA0)
Siemens SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA6)
Siemens SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AB0)
Siemens SCALANCE W734-1 RJ45 (USA)
(6GK5734-1FX00-0AB6)
Siemens SCALANCE W738-1 M12 (6GK5738-1GY00-0AA0)
Siemens SCALANCE W738-1 M12 (6GK5738-1GY00-0AB0)
Siemens SCALANCE W748-1 M12 (6GK5748-1GD00-0AA0)
Siemens SCALANCE W748-1 M12 (6GK5748-1GD00-0AB0)
Siemens SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AA0)
Siemens SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AB0)
Siemens SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AA0)
Siemens SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AB0)
Siemens SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TA0)
Siemens SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TB0)
Siemens SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA0)
Siemens SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA6)
Siemens SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AB0)
Siemens SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AC0)
Siemens SCALANCE W774-1 RJ45 (USA)
(6GK5774-1FX00-0AB6)
Siemens SCALANCE W778-1 M12 (6GK5778-1GY00-0AA0)
Siemens SCALANCE W778-1 M12 (6GK5778-1GY00-0AB0)
Siemens SCALANCE W778-1 M12 EEC (6GK5778-1GY00-0TA0)
Siemens SCALANCE W778-1 M12 EEC (USA)
(6GK5778-1GY00-0TB0)
Siemens SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AA0)
Siemens SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AB0)
Siemens SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AA0)
Siemens SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AB0)
Siemens SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AC0)
Siemens SCALANCE W786-2 SFP (6GK5786-2FE00-0AA0)
Siemens SCALANCE W786-2 SFP (6GK5786-2FE00-0AB0)
Siemens SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AA0)
Siemens SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AB0)
Siemens SCALANCE W788-1 M12 (6GK5788-1GD00-0AA0)
Siemens SCALANCE W788-1 M12 (6GK5788-1GD00-0AB0)
Siemens SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AA0)
Siemens SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AB0)
Siemens SCALANCE W788-2 M12 (6GK5788-2GD00-0AA0)
Siemens SCALANCE W788-2 M12 (6GK5788-2GD00-0AB0)
Siemens SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TA0)
Siemens SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TB0)
Siemens SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TC0)
Siemens SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AA0)
Siemens SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AB0)
Siemens SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AC0)
Siemens SCALANCE WAB762-1 (6GK5762-1AJ00-6AA0)
Siemens SCALANCE WAM763-1 (6GK5763-1AL00-7DA0)
Siemens SCALANCE WAM763-1 (ME) (6GK5763-1AL00-7DC0)
Siemens SCALANCE WAM763-1 (US) (6GK5763-1AL00-7DB0)
Siemens SCALANCE WAM766-1 (6GK5766-1GE00-7DA0)
Siemens SCALANCE WAM766-1 (ME) (6GK5766-1GE00-7DC0)
Siemens SCALANCE WAM766-1 (US) (6GK5766-1GE00-7DB0)
Siemens SCALANCE WAM766-1 EEC (6GK5766-1GE00-7TA0)
Siemens SCALANCE WAM766-1 EEC (ME)
(6GK5766-1GE00-7TC0)
Siemens SCALANCE WAM766-1 EEC (US)
(6GK5766-1GE00-7TB0)
Siemens SCALANCE WUB762-1 (6GK5762-1AJ00-1AA0)
Siemens SCALANCE WUB762-1 iFeatures
(6GK5762-1AJ00-2AA0)
Siemens SCALANCE WUM763-1 (6GK5763-1AL00-3AA0)
Siemens SCALANCE WUM763-1 (6GK5763-1AL00-3DA0)
Siemens SCALANCE WUM763-1 (US) (6GK5763-1AL00-3AB0)
Siemens SCALANCE WUM763-1 (US) (6GK5763-1AL00-3DB0)
Siemens SCALANCE WUM766-1 (6GK5766-1GE00-3DA0)
Siemens SCALANCE WUM766-1 (ME) (6GK5766-1GE00-3DC0)
Siemens SCALANCE WUM766-1 (USA) (6GK5766-1GE00-3DB0)
Siemens SCALANCE X302-7 EEC (230V)
(6GK5302-7GD00-3EA3)
Siemens SCALANCE X302-7 EEC (230V, coated)
(6GK5302-7GD00-3GA3)
Siemens SCALANCE X302-7 EEC (24V) (6GK5302-7GD00-1EA3)
Siemens SCALANCE X302-7 EEC (24V, coated)
(6GK5302-7GD00-1GA3)
Siemens SCALANCE X302-7 EEC (2x 230V)
(6GK5302-7GD00-4EA3)
Siemens SCALANCE X302-7 EEC (2x 230V, coated)
(6GK5302-7GD00-4GA3)
Siemens SCALANCE X302-7 EEC (2x 24V)
(6GK5302-7GD00-2EA3)
Siemens SCALANCE X302-7 EEC (2x 24V, coated)
(6GK5302-7GD00-2GA3)
Siemens SCALANCE X304-2FE (6GK5304-2BD00-2AA3)
Siemens SCALANCE X306-1LD FE (6GK5306-1BF00-2AA3)
Siemens SCALANCE X307-2 EEC (230V)
(6GK5307-2FD00-3EA3)
Siemens SCALANCE X307-2 EEC (230V, coated)
(6GK5307-2FD00-3GA3)
Siemens SCALANCE X307-2 EEC (24V) (6GK5307-2FD00-1EA3)
Siemens SCALANCE X307-2 EEC (24V, coated)
(6GK5307-2FD00-1GA3)
Siemens SCALANCE X307-2 EEC (2x 230V)
(6GK5307-2FD00-4EA3)
Siemens SCALANCE X307-2 EEC (2x 230V, coated)
(6GK5307-2FD00-4GA3)
Siemens SCALANCE X307-2 EEC (2x 24V)
(6GK5307-2FD00-2EA3)
Siemens SCALANCE X307-2 EEC (2x 24V, coated)
(6GK5307-2FD00-2GA3)
Siemens SCALANCE X307-3 (6GK5307-3BL00-2AA3)
Siemens SCALANCE X307-3 (6GK5307-3BL10-2AA3)
Siemens SCALANCE X307-3LD (6GK5307-3BM00-2AA3)
Siemens SCALANCE X307-3LD (6GK5307-3BM10-2AA3)
Siemens SCALANCE X308-2 (6GK5308-2FL00-2AA3)
Siemens SCALANCE X308-2 (6GK5308-2FL10-2AA3)
Siemens SCALANCE X308-2LD (6GK5308-2FM00-2AA3)
Siemens SCALANCE X308-2LD (6GK5308-2FM10-2AA3)
Siemens SCALANCE X308-2LH (6GK5308-2FN00-2AA3)
Siemens SCALANCE X308-2LH (6GK5308-2FN10-2AA3)
Siemens SCALANCE X308-2LH+ (6GK5308-2FP00-2AA3)
Siemens SCALANCE X308-2LH+ (6GK5308-2FP10-2AA3)
Siemens SCALANCE X308-2M (6GK5308-2GG00-2AA2)
Siemens SCALANCE X308-2M (6GK5308-2GG10-2AA2)
Siemens SCALANCE X308-2M PoE (6GK5308-2QG00-2AA2)
Siemens SCALANCE X308-2M PoE (6GK5308-2QG10-2AA2)
Siemens SCALANCE X308-2M TS (6GK5308-2GG00-2CA2)
Siemens SCALANCE X308-2M TS (6GK5308-2GG10-2CA2)
Siemens SCALANCE X310 (6GK5310-0FA00-2AA3)
Siemens SCALANCE X310 (6GK5310-0FA10-2AA3)
Siemens SCALANCE X310FE (6GK5310-0BA00-2AA3)
Siemens SCALANCE X310FE (6GK5310-0BA10-2AA3)
Siemens SCALANCE X320-1 FE (6GK5320-1BD00-2AA3)
Siemens SCALANCE X320-1-2LD FE (6GK5320-3BF00-2AA3)
Siemens SCALANCE X408-2 (6GK5408-2FD00-2AA2)
Siemens SCALANCE XB-200 Firmware
Siemens SCALANCE XB205-3 (SC, PN) (6GK5205-3BB00-2AB2)
Siemens SCALANCE XB205-3 (ST, E/IP)
(6GK5205-3BB00-2TB2)
Siemens SCALANCE XB205-3 (ST, E/IP)
(6GK5205-3BD00-2TB2)
Siemens SCALANCE XB205-3 (ST, PN) (6GK5205-3BD00-2AB2)
Siemens SCALANCE XB205-3LD (SC, E/IP)
(6GK5205-3BF00-2TB2)
Siemens SCALANCE XB205-3LD (SC, PN)
(6GK5205-3BF00-2AB2)
Siemens SCALANCE XB208 (E/IP) (6GK5208-0BA00-2TB2)
Siemens SCALANCE XB208 (PN) (6GK5208-0BA00-2AB2)
Siemens SCALANCE XB213-3 (SC, E/IP)
(6GK5213-3BD00-2TB2)
Siemens SCALANCE XB213-3 (SC, PN) (6GK5213-3BD00-2AB2)
Siemens SCALANCE XB213-3 (ST, E/IP)
(6GK5213-3BB00-2TB2)
Siemens SCALANCE XB213-3 (ST, PN) (6GK5213-3BB00-2AB2)
Siemens SCALANCE XB213-3LD (SC, E/IP)
(6GK5213-3BF00-2TB2)
Siemens SCALANCE XB213-3LD (SC, PN)
(6GK5213-3BF00-2AB2)
Siemens SCALANCE XB216 (E/IP) (6GK5216-0BA00-2TB2)
Siemens SCALANCE XB216 (PN) (6GK5216-0BA00-2AB2)
Siemens SCALANCE XC206-2 (SC) (6GK5206-2BD00-2AC2)
Siemens SCALANCE XC206-2 (ST/BFOC)
(6GK5206-2BB00-2AC2)
Siemens SCALANCE XC206-2G PoE (54 V DC)
(6GK5206-2RS00-5AC2)
Siemens SCALANCE XC206-2G PoE (6GK5206-2RS00-2AC2)
Siemens SCALANCE XC206-2G PoE EEC (54 V DC)
(6GK5206-2RS00-5FC2)
Siemens SCALANCE XC206-2SFP (6GK5206-2BS00-2AC2)
Siemens SCALANCE XC206-2SFP EEC (6GK5206-2BS00-2FC2)
Siemens SCALANCE XC206-2SFP G (6GK5206-2GS00-2AC2)
Siemens SCALANCE XC206-2SFP G (EIP DEF.)
(6GK5206-2GS00-2TC2)
Siemens SCALANCE XC206-2SFP G EEC (6GK5206-2GS00-2FC2)
Siemens SCALANCE XC208 (6GK5208-0BA00-2AC2)
Siemens SCALANCE XC208 Firmware
Siemens SCALANCE XC208EEC (6GK5208-0BA00-2FC2)
Siemens SCALANCE XC208G (6GK5208-0GA00-2AC2)
Siemens SCALANCE XC208G (EIP def.)
(6GK5208-0GA00-2TC2)
Siemens SCALANCE XC208G EEC (6GK5208-0GA00-2FC2)
Siemens SCALANCE XC208G PoE (54 V DC)
(6GK5208-0RA00-5AC2)
Siemens SCALANCE XC208G PoE (6GK5208-0RA00-2AC2)
Siemens SCALANCE XC216 (6GK5216-0BA00-2AC2)
Siemens SCALANCE XC216-3G PoE (54 V DC)
(6GK5216-3RS00-5AC2)
Siemens SCALANCE XC216-3G PoE (6GK5216-3RS00-2AC2)
Siemens SCALANCE XC216-4C (6GK5216-4BS00-2AC2)
Siemens SCALANCE XC216-4C G (6GK5216-4GS00-2AC2)
Siemens SCALANCE XC216-4C G (EIP Def.)
(6GK5216-4GS00-2TC2)
Siemens SCALANCE XC216-4C G EEC (6GK5216-4GS00-2FC2)
Siemens SCALANCE XC216EEC (6GK5216-0BA00-2FC2)
Siemens SCALANCE XC224 (6GK5224-0BA00-2AC2)
Siemens SCALANCE XC224-4C G (6GK5224-4GS00-2AC2)
Siemens SCALANCE XC224-4C G (EIP Def.)
(6GK5224-4GS00-2TC2)
Siemens SCALANCE XC224-4C G EEC (6GK5224-4GS00-2FC2)
Siemens SCALANCE XC316-8 (6GK5324-8TS00-2AC2)
Siemens SCALANCE XC324-4 (6GK5328-4TS00-2AC2)
Siemens SCALANCE XC324-4 EEC (6GK5328-4TS00-2EC2)
Siemens SCALANCE XC332 (6GK5332-0GA00-2AC2)
Siemens SCALANCE XC416-8 (6GK5424-8TR00-2AC2)
Siemens SCALANCE XC424-4 (6GK5428-4TR00-2AC2)
Siemens SCALANCE XC432 (6GK5432-0GR00-2AC2)
Siemens SCALANCE XCH328 (6GK5328-4TS01-2EC2)
Siemens SCALANCE XCM324 (6GK5324-8TS01-2AC2)
Siemens SCALANCE XCM328 (6GK5328-4TS01-2AC2)
Siemens SCALANCE XCM332 (6GK5332-0GA01-2AC2)
Siemens SCALANCE XF-200BA Firmware (OS)
Siemens SCALANCE XF204 (6GK5204-0BA00-2GF2)
Siemens SCALANCE XF204 DNA (6GK5204-0BA00-2YF2)
Siemens SCALANCE XF204-2BA (6GK5204-2AA00-2GF2)
Siemens SCALANCE XF204-2BA DNA (6GK5204-2AA00-2YF2)
Siemens SCALANCE XM-400 Firmware
Siemens SCALANCE XM408-4C (6GK5408-4GP00-2AM2)
Siemens SCALANCE XM408-4C (L3 int.)
(6GK5408-4GQ00-2AM2)
Siemens SCALANCE XM408-8C (6GK5408-8GS00-2AM2)
Siemens SCALANCE XM408-8C (L3 int.)
(6GK5408-8GR00-2AM2)
Siemens SCALANCE XM416-4C (6GK5416-4GS00-2AM2)
Siemens SCALANCE XM416-4C (L3 int.)
(6GK5416-4GR00-2AM2)
Siemens SCALANCE XP-200 Firmware
Siemens SCALANCE XP208 (6GK5208-0HA00-2AS6)
Siemens SCALANCE XP208 (Ethernet/IP)
(6GK5208-0HA00-2TS6)
Siemens SCALANCE XP208EEC (6GK5208-0HA00-2ES6)
Siemens SCALANCE XP208PoE EEC (6GK5208-0UA00-5ES6)
Siemens SCALANCE XP216 (6GK5216-0HA00-2AS6)
Siemens SCALANCE XP216 (Ethernet/IP)
(6GK5216-0HA00-2TS6)
Siemens SCALANCE XP216EEC (6GK5216-0HA00-2ES6)
Siemens SCALANCE XP216POE EEC (6GK5216-0UA00-5ES6)
Siemens SCALANCE XR-300WG Firmware (OS)
Siemens SCALANCE XR-500 Firmware (OS)
Siemens SCALANCE XR302-32 (6GK5334-5TS00-2AR3)
Siemens SCALANCE XR302-32 (6GK5334-5TS00-3AR3)
Siemens SCALANCE XR302-32 (6GK5334-5TS00-4AR3)
Siemens SCALANCE XR322-12 (6GK5334-3TS00-2AR3)
Siemens SCALANCE XR322-12 (6GK5334-3TS00-3AR3)
Siemens SCALANCE XR322-12 (6GK5334-3TS00-4AR3)
Siemens SCALANCE XR324-12M (230V, ports on front)
(6GK5324-0GG00-3AR2)
Siemens SCALANCE XR324-12M (230V, ports on front)
(6GK5324-0GG10-3AR2)
Siemens SCALANCE XR324-12M (230V, ports on rear)
(6GK5324-0GG00-3HR2)
Siemens SCALANCE XR324-12M (230V, ports on rear)
(6GK5324-0GG10-3HR2)
Siemens SCALANCE XR324-12M (24V, ports on front)
(6GK5324-0GG00-1AR2)
Siemens SCALANCE XR324-12M (24V, ports on front)
(6GK5324-0GG10-1AR2)
Siemens SCALANCE XR324-12M (24V, ports on rear)
(6GK5324-0GG00-1HR2)
Siemens SCALANCE XR324-12M (24V, ports on rear)
(6GK5324-0GG10-1HR2)
Siemens SCALANCE XR324-12M TS (24V)
(6GK5324-0GG00-1CR2)
Siemens SCALANCE XR324-12M TS (24V)
(6GK5324-0GG10-1CR2)
Siemens SCALANCE XR324-4M EEC (100-240VAC/60-250VDC,
ports on front) (6GK5324-4GG00-3ER2)
Siemens SCALANCE XR324-4M EEC (100-240VAC/60-250VDC,
ports on front) (6GK5324-4GG10-3ER2)
Siemens SCALANCE XR324-4M EEC (100-240VAC/60-250VDC,
ports on rear) (6GK5324-4GG00-3JR2)
Siemens SCALANCE XR324-4M EEC (100-240VAC/60-250VDC,
ports on rear) (6GK5324-4GG10-3JR2)
Siemens SCALANCE XR324-4M EEC (24V, ports on front)
(6GK5324-4GG00-1ER2)
Siemens SCALANCE XR324-4M EEC (24V, ports on front)
(6GK5324-4GG10-1ER2)
Siemens SCALANCE XR324-4M EEC (24V, ports on rear)
(6GK5324-4GG00-1JR2)
Siemens SCALANCE XR324-4M EEC (24V, ports on rear)
(6GK5324-4GG10-1JR2)
Siemens SCALANCE XR324-4M EEC (2x
100-240VAC/60-250VDC, ports on front)
(6GK5324-4GG00-4ER2)
Siemens SCALANCE XR324-4M EEC (2x
100-240VAC/60-250VDC, ports on front)
(6GK5324-4GG10-4ER2)
Siemens SCALANCE XR324-4M EEC (2x
100-240VAC/60-250VDC, ports on rear)
(6GK5324-4GG00-4JR2)
Siemens SCALANCE XR324-4M EEC (2x
100-240VAC/60-250VDC, ports on rear)
(6GK5324-4GG10-4JR2)
Siemens SCALANCE XR324-4M EEC (2x 24V, ports on front)
(6GK5324-4GG00-2ER2)
Siemens SCALANCE XR324-4M EEC (2x 24V, ports on front)
(6GK5324-4GG10-2ER2)
Siemens SCALANCE XR324-4M EEC (2x 24V, ports on rear)
(6GK5324-4GG00-2JR2)
Siemens SCALANCE XR324-4M EEC (2x 24V, ports on rear)
(6GK5324-4GG10-2JR2)
Siemens SCALANCE XR324-4M PoE (230V, ports on front)
(6GK5324-4QG00-3AR2)
Siemens SCALANCE XR324-4M PoE (230V, ports on front)
(6GK5324-4QG10-3AR2)
Siemens SCALANCE XR324-4M PoE (230V, ports on rear)
(6GK5324-4QG00-3HR2)
Siemens SCALANCE XR324-4M PoE (230V, ports on rear)
(6GK5324-4QG10-3HR2)
Siemens SCALANCE XR324-4M PoE (24V, ports on front)
(6GK5324-4QG00-1AR2)
Siemens SCALANCE XR324-4M PoE (24V, ports on front)
(6GK5324-4QG10-1AR2)
Siemens SCALANCE XR324-4M PoE (24V, ports on rear)
(6GK5324-4QG00-1HR2)
Siemens SCALANCE XR324-4M PoE (24V, ports on rear)
(6GK5324-4QG10-1HR2)
Siemens SCALANCE XR324-4M PoE TS (24V, ports on front)
(6GK5324-4QG00-1CR2)
Siemens SCALANCE XR324-4M PoE TS (24V, ports on front)
(6GK5324-4QG10-1CR2)
Siemens SCALANCE XR324WG (24 X FE, DC 24V)
(6GK5324-0BA00-2AR3)
Siemens SCALANCE XR324WG (24 x FE, AC 230V)
(6GK5324-0BA00-3AR3)
Siemens SCALANCE XR326-2C PoE WG (6GK5326-2QS00-3AR3)
Siemens SCALANCE XR326-2C PoE WG (without UL)
(6GK5326-2QS00-3RR3)
Siemens SCALANCE XR326-8 (6GK5334-2TS00-2AR3)
Siemens SCALANCE XR326-8 (6GK5334-2TS00-3AR3)
Siemens SCALANCE XR326-8 (6GK5334-2TS00-4AR3)
Siemens SCALANCE XR326-8 EEC (6GK5334-2TS00-2ER3)
Siemens SCALANCE XR328-4C WG (24XFE, 4XGE, 24V)
(6GK5328-4FS00-2AR3)
Siemens SCALANCE XR328-4C WG (24xFE, 4xGE,DC24V)
(6GK5328-4FS00-2RR3)
Siemens SCALANCE XR328-4C WG (24xFE,4xGE,AC230V)
(6GK5328-4FS00-3AR3)
Siemens SCALANCE XR328-4C WG (24xFE,4xGE,AC230V)
(6GK5328-4FS00-3RR3)
Siemens SCALANCE XR328-4C WG (28xGE, AC 230V)
(6GK5328-4SS00-3AR3)
Siemens SCALANCE XR328-4C WG (28xGE, DC 24V)
(6GK5328-4SS00-2AR3)
Siemens SCALANCE XR502-32 (6GK5534-5TR00-2AR3)
Siemens SCALANCE XR502-32 (6GK5534-5TR00-3AR3)
Siemens SCALANCE XR502-32 (6GK5534-5TR00-4AR3)
Siemens SCALANCE XR522-12 (6GK5534-3TR00-2AR3)
Siemens SCALANCE XR522-12 (6GK5534-3TR00-3AR3)
Siemens SCALANCE XR522-12 (6GK5534-3TR00-4AR3)
Siemens SCALANCE XR524-8C, 1x230V (6GK5524-8GS00-3AR2)
Siemens SCALANCE XR524-8C, 1x230V (L3 int.)
(6GK5524-8GR00-3AR2)
Siemens SCALANCE XR524-8C, 24V (6GK5524-8GS00-2AR2)
Siemens SCALANCE XR524-8C, 24V (L3 int.)
(6GK5524-8GR00-2AR2)
Siemens SCALANCE XR524-8C, 2x230V (6GK5524-8GS00-4AR2)
Siemens SCALANCE XR524-8C, 2x230V (L3 int.)
(6GK5524-8GR00-4AR2)
Siemens SCALANCE XR526-8 (6GK5534-2TR00-2AR3)
Siemens SCALANCE XR526-8 (6GK5534-2TR00-3AR3)
Siemens SCALANCE XR526-8 (6GK5534-2TR00-4AR3)
Siemens SCALANCE XR526-8C, 1x230V (6GK5526-8GS00-3AR2)
Siemens SCALANCE XR526-8C, 1x230V (L3 int.)
(6GK5526-8GR00-3AR2)
Siemens SCALANCE XR526-8C, 24V (6GK5526-8GS00-2AR2)
Siemens SCALANCE XR526-8C, 24V (L3 int.)
(6GK5526-8GR00-2AR2)
Siemens SCALANCE XR526-8C, 2x230V (6GK5526-8GS00-4AR2)
Siemens SCALANCE XR526-8C, 2x230V (L3 int.)
(6GK5526-8GR00-4AR2)
Siemens SCALANCE XR528-6M (2HR2) (6GK5528-0AA00-2HR2)
Siemens SCALANCE XR528-6M (2HR2, L3 int.)
(6GK5528-0AR00-2HR2)
Siemens SCALANCE XR528-6M (6GK5528-0AA00-2AR2)
Siemens SCALANCE XR528-6M (L3 int.)
(6GK5528-0AR00-2AR2)
Siemens SCALANCE XR552-12M (2HR2) (6GK5552-0AA00-2HR2)
Siemens SCALANCE XR552-12M (2HR2) (6GK5552-0AR00-2HR2)
Siemens SCALANCE XR552-12M (2HR2, L3 int.)
(6GK5552-0AR00-2AR2)
Siemens SCALANCE XR552-12M (6GK5552-0AA00-2AR2)
Siemens SCALANCE XRH334 (24 V DC, 8xFO, CC)
(6GK5334-2TS01-2ER3)
Siemens SCALANCE XRM334 (230 V AC, 12xFO)
(6GK5334-3TS01-3AR3)
Siemens SCALANCE XRM334 (230 V AC, 8xFO)
(6GK5334-2TS01-3AR3)
Siemens SCALANCE XRM334 (24 V DC, 12xFO)
(6GK5334-3TS01-2AR3)
Siemens SCALANCE XRM334 (24 V DC, 8xFO)
(6GK5334-2TS01-2AR3)
Siemens SCALANCE XRM334 (2x230 V AC, 12xFO)
(6GK5334-3TS01-4AR3)
Siemens SCALANCE XRM334 (2x230 V AC, 8xFO)
(6GK5334-2TS01-4AR3)
Siemens SIDIS Prime
Siemens SINEC INS
Siemens SIPLUS NET SCALANCE X308-2
(6AG1308-2FL10-4AA3)
Siemens SIPLUS NET SCALANCE XC206-2
(6AG1206-2BB00-7AC2)
Siemens SIPLUS NET SCALANCE XC206-2SFP
(6AG1206-2BS00-7AC2)
Siemens SIPLUS NET SCALANCE XC208 (6AG1208-0BA00-7AC2)
Siemens SIPLUS NET SCALANCE XC216-4C
(6AG1216-4BS00-7AC2)
Siemens Scalance M-800 Firmware
Siemens Scalance X-300 Firmware (Application)
Siemens Scalance XC-200 Firmware
Siemens Scalance Xch328 Firmware
Siemens Scalance Xrh334 Firmware
Siemens Scalance Xrm334 Firmware
Siemens Sidis Prime
Siemens Siveillance Video
Siemens Siveillance Video 2022 R1
Siemens Siveillance Video 2022 R2
Siemens Siveillance Video 2022 R3
Siemens Siveillance Video 2023 R1
Siemens Siveillance Video 2023 R2
Siemens Siveillance Video 2023 R3
Siemens Teamcenter Visualization
Siemens Ruggedcom I800
Siemens Ruggedcom M2200
Siemens Ruggedcom M2200Nc
Siemens Ruggedcom Rmc30Nc
Siemens Ruggedcom Rox Mx5000Re
Siemens Ruggedcom Rs1600Tnc
Siemens Ruggedcom Rs400
Siemens Ruggedcom Rs400Nc
Siemens Ruggedcom Rs401Nc
Siemens Ruggedcom Rs416P
Siemens Ruggedcom Rs8000H
Siemens Ruggedcom Rs8000Tnc
Siemens Ruggedcom Rs900
Siemens Ruggedcom Rs900Gnc
Siemens Ruggedcom Rs900Mnc-Stnd-Xx-C01
Siemens Ruggedcom Rsg2100Nc
Siemens Ruggedcom Rsg908C
Siemens Ruggedcom Rst916P
Versie(s) :
Platform(s) :
Beschrijving
Siemens heeft kwetsbaarheden verholpen in diverse producten als
Apogee, BacNet ATEC, Desigo CC, Intralog, OZW, Polarion, RUGGEDCOM,
SICAM, SIMATIC, SIPROTEC, SIRIUS, Teamcenter en Versicharge
De kwetsbaarheden stellen een kwaadwillende mogelijk in staat
aanvallen uit te voeren die kunnen leiden tot de volgende categorieën
schade:
- Denial-of-Service (DoS)
- Manipulatie van gegevens
- Omzeilen van een beveiligingsmaatregel
- Omzeilen van authenticatie
- (Remote) code execution (root/admin rechten)
- (Remote) code execution (Gebruikersrechten)
- Toegang tot systeemgegevens
- Toegang tot gevoelige gegevens
- Spoofing
De kwaadwillende heeft hiervoor toegang nodig tot de
productieomgeving. Het is goed gebruik een dergelijke omgeving niet
publiek toegankelijk te hebben.
Mogelijke oplossingen
Siemens heeft beveiligingsupdates uitgebracht om de kwetsbaarheden te
verhelpen. Voor de kwetsbaarheden waar nog geen updates voor zijn,
heeft Siemens mitigerende maatregelen gepubliceerd om de risico's
zoveel als mogelijk te beperken. Zie de bijgevoegde referenties voor
meer informatie.
Referenties:
Reference - ncscclear
https://cert-portal.siemens.com/productcert/pdf/ssa-047424.pdf
Reference - ncscclear
https://cert-portal.siemens.com/productcert/pdf/ssa-162255.pdf
Reference - ncscclear
https://cert-portal.siemens.com/productcert/pdf/ssa-222768.pdf
Reference - ncscclear
https://cert-portal.siemens.com/productcert/pdf/ssa-339086.pdf
Reference - ncscclear
https://cert-portal.siemens.com/productcert/pdf/ssa-523418.pdf
Reference - ncscclear
https://cert-portal.siemens.com/productcert/pdf/ssa-542540.pdf
Reference - ncscclear
https://cert-portal.siemens.com/productcert/pdf/ssa-556937.pdf
Reference - ncscclear
https://cert-portal.siemens.com/productcert/pdf/ssa-614723.pdf
Reference - ncscclear
https://cert-portal.siemens.com/productcert/pdf/ssa-668154.pdf
Reference - ncscclear
https://cert-portal.siemens.com/productcert/pdf/ssa-718393.pdf
Reference - ncscclear
https://cert-portal.siemens.com/productcert/pdf/ssa-794185.pdf
Reference - ncscclear
https://cert-portal.siemens.com/productcert/pdf/ssa-828116.pdf
Reference - ncscclear
https://cert-portal.siemens.com/productcert/pdf/ssa-864900.pdf
Reference - ncscclear
https://cert-portal.siemens.com/productcert/pdf/ssa-901508.pdf
Vrijwaringsverklaring
Door gebruik van deze security advisory gaat u akkoord met de
navolgende voorwaarden. Ondanks dat het NCSC de grootst mogelijke
zorg heeft betracht bij de samenstelling van dit beveiligingsadvies,
kan het NCSC niet instaan voor de volledigheid, juistheid of
(voortdurende) actualiteit van dit beveiligingsadvies. De informatie
in dit beveiligingsadvies is uitsluitend bedoeld als algemene
informatie voor professionele partijen. Aan de informatie in dit
beveiligingsadvies kunnen geen rechten worden ontleend. Het NCSC
en de Staat zijn niet aansprakelijk voor enige schade ten gevolge
van het gebruik of de onmogelijkheid van het gebruik van dit
beveiligingsadvies, waaronder begrepen schade ten gevolge van de
onjuistheid of onvolledigheid van de informatie in dit
beveiligingsadvies. Op dit beveiligingsadvies is Nederlands recht
van toepassing. Alle geschillen in verband met en/of voortvloeiend
uit dit beveiligingsadvies zullen worden voorgelegd aan de exclusief
bevoegde rechter te Den Haag. Deze rechtskeuze geldt tevens voor de
voorzieningenrechter in kort geding.
-----BEGIN PGP SIGNATURE-----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=BKQq
-----END PGP SIGNATURE-----
