VIR Vulnerability Intelligence Relay

CVE-2012-1802

high
Published 2012-04-18 · Modified 2026-04-29
CVSS v3
CVSS v2
7.8
VIR risk
7.8

Description

Buffer overflow in the embedded web server on the Siemens Scalance X Industrial Ethernet switch X414-3E before 3.7.1, X308-2M before 3.7.2, X-300EEC before 3.7.2, XR-300 before 3.7.2, and X-300 before 3.7.2 allows remote attackers to cause a denial of service (device reboot) or possibly execute arbitrary code via a malformed URL.

Predictions

Exploit likelihood
20%
Patch ETA

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

vendor Authored 2026-05-27

Vendor advisory: cret@cert.org — http://www.siemens.com/corporate-technology/pool/de/forschungsfelder/siemens_security_advisory_ssa-130874.pdf

Application impact
VendorProductVersionsFixed
siemensscalance_x414-3e_firmware{"endIncluding":"3.7.0"}
siemensscalance_x414-3e_firmware1.2.2
siemensscalance_x414-3e_firmware2.1.1
siemensscalance_x414-3e_firmware2.2.0
siemensscalance_x414-3e_firmware2.3.2
siemensscalance_x414-3e_firmware2.3.3
siemensscalance_x414-3e_firmware3.0.0
siemensscalance_x414-3e_firmware3.0.2
siemensscalance_x414-3e_firmware3.3.0
siemensscalance_x414-3e_firmware3.4.0
siemensscalance_x308-2m_firmware{"endIncluding":"3.7.0"}
siemensscalance_x308-2m_firmware3.1.1
siemensscalance_x308-2m_firmware3.5.0
siemensscalance_x308-2m_firmware3.5.2
siemensscalance_x-300eec_firmware{"endIncluding":"3.7.0"}
siemensscalance_x-300eec_firmware3.5.0
siemensscalance_xr-300_firmware{"endIncluding":"3.7.0"}
siemensscalance_xr-300_firmware3.1.1
siemensscalance_xr-300_firmware3.5.0
siemensscalance_x-300_firmware{"endIncluding":"3.7.0"}
siemensscalance_x-300_firmware2.2.0
siemensscalance_x-300_firmware2.3.1
siemensscalance_x-300_firmware3.0.0
siemensscalance_x-300_firmware3.3.1
siemensscalance_x-300_firmware3.5.0
siemensscalance_x-300_firmware3.5.1

References

CWEs

CWE-119

Verify integrity in audit chain (admin only). AS-IS.