You are here

Siemens SCALANCE X Switches (ICSA-18-254-05) - Product Used in the Water and Wastewater and Energy Sectors

Siemens SCALANCE X Switches (ICSA-18-254-05) - Product Used in the Water and Wastewater and Energy Sectors

Created: Tuesday, September 11, 2018 - 17:25
Categories:
Cybersecurity

The NCCIC has released an advisory on an improper input validation vulnerability in Siemens SCALANCE X Switches. For SCALANCE X300 and X408, all versions prior to 4.0.0 are affected. For SCALANCE X414, all versions are affected. Successful exploitation of this vulnerability could allow an attacker with network access to the device to cause a denial-of-service condition. Siemens provides updates for SCALANCE X300, and SCALANCE X408, and provides mitigations for the SCALANCE X414. The NCCIC also recommends a series of defensive measures to minimize the risk of exploitation of these vulnerabilities. NCCIC/ICS-CERT.