ID
VAR-202101-0138
CVE
CVE-2020-15799
TITLE
SCALANCE X-200 and SCALANCE X-200IRT Vulnerability in lack of authentication for critical features in the switch family
Trust: 0.8
sources:
JVNDB: JVNDB-2020-015540
DESCRIPTION
A vulnerability has been identified in SCALANCE X-200 switch family (incl. SIPLUS NET variants) (All versions < V5.2.5), SCALANCE X-200IRT switch family (incl. SIPLUS NET variants) (All versions < V5.5.0). The vulnerability could allow an unauthenticated attacker to reboot the device over the network by using special urls from integrated web server of the affected products. SCALANCE X-200 and SCALANCE X-200IRT A vulnerability exists in the switch family regarding the lack of authentication for critical features.Denial of service (DoS) It may be put into a state. SCALANCE X is a switch used to connect industrial components, such as programmable logic controllers (plc) or human machine interfaces (HMIs)
Trust: 2.16
sources:
NVD: CVE-2020-15799 //
JVNDB: JVNDB-2020-015540 //
CNVD: CNVD-2021-02596
IOT TAXONOMY
| category: | ['ICS'] | sub_category: | - | Trust: 0.6 |
sources:
CNVD: CNVD-2021-02596
AFFECTED PRODUCTS
| vendor: | siemens | model: | scalance xc216eec | scope: | lt | version: | 5.2.5 | Trust: 1.0 |
| vendor: | siemens | model: | scalance x308-2m ts | scope: | eq | version: | * | Trust: 1.0 |
| vendor: | siemens | model: | scalance x308-2lh | scope: | eq | version: | * | Trust: 1.0 |
| vendor: | siemens | model: | scalance xf204 | scope: | lt | version: | 5.2.5 | Trust: 1.0 |
| vendor: | siemens | model: | scalance xp216 | scope: | lt | version: | 5.2.5 | Trust: 1.0 |
| vendor: | siemens | model: | scalance xc224-4c g | scope: | lt | version: | 5.2.5 | Trust: 1.0 |
| vendor: | siemens | model: | scalance xc224-4c g eec | scope: | lt | version: | 5.2.5 | Trust: 1.0 |
| vendor: | siemens | model: | scalance x201-3pirt | scope: | lt | version: | 5.5.0 | Trust: 1.0 |
| vendor: | siemens | model: | scalance xc206-2sfp g eec | scope: | lt | version: | 5.2.5 | Trust: 1.0 |
| vendor: | siemens | model: | scalance xc216-4c | scope: | lt | version: | 5.2.5 | Trust: 1.0 |
| vendor: | siemens | model: | scalance xb205-3 | scope: | lt | version: | 5.2.5 | Trust: 1.0 |
| vendor: | siemens | model: | scalance xc206-2sfp eec | scope: | lt | version: | 5.2.5 | Trust: 1.0 |
| vendor: | siemens | model: | scalance x308-2ld | scope: | eq | version: | * | Trust: 1.0 |
| vendor: | siemens | model: | scalance x308-2m | scope: | eq | version: | * | Trust: 1.0 |
| vendor: | siemens | model: | scalance x307-3ld | scope: | eq | version: | * | Trust: 1.0 |
| vendor: | siemens | model: | scalance xc206-2g poe | scope: | lt | version: | 5.2.5 | Trust: 1.0 |
| vendor: | siemens | model: | scalance xc216-4c g | scope: | lt | version: | 5.2.5 | Trust: 1.0 |
| vendor: | siemens | model: | scalance xp216eec | scope: | lt | version: | 5.2.5 | Trust: 1.0 |
| vendor: | siemens | model: | scalance xb216 | scope: | lt | version: | 5.2.5 | Trust: 1.0 |
| vendor: | siemens | model: | scalance x202-2irt | scope: | lt | version: | 5.5.0 | Trust: 1.0 |
| vendor: | siemens | model: | scalance xc206-2g poe eec | scope: | lt | version: | 5.2.5 | Trust: 1.0 |
| vendor: | siemens | model: | scalance x202-2pirt siplus net | scope: | lt | version: | 5.5.0 | Trust: 1.0 |
| vendor: | siemens | model: | scalance xf201-3p irt | scope: | lt | version: | 5.2.5 | Trust: 1.0 |
| vendor: | siemens | model: | scalance xf204-2ba dna | scope: | lt | version: | 5.2.5 | Trust: 1.0 |
| vendor: | siemens | model: | scalance xf204irt | scope: | lt | version: | 5.2.5 | Trust: 1.0 |
| vendor: | siemens | model: | scalance xc206-2sfp g \ | scope: | lt | version: | 5.2.5 | Trust: 1.0 |
| vendor: | siemens | model: | scalance xp208poe eec | scope: | lt | version: | 5.2.5 | Trust: 1.0 |
| vendor: | siemens | model: | scalance xb205-3ld | scope: | lt | version: | 5.2.5 | Trust: 1.0 |
| vendor: | siemens | model: | scalance xf202-2p irt | scope: | lt | version: | 5.2.5 | Trust: 1.0 |
| vendor: | siemens | model: | scalance xc224 | scope: | lt | version: | 5.2.5 | Trust: 1.0 |
| vendor: | siemens | model: | scalance xc206-2sfp g | scope: | lt | version: | 5.2.5 | Trust: 1.0 |
| vendor: | siemens | model: | scalance xp216 \ | scope: | lt | version: | 5.2.5 | Trust: 1.0 |
| vendor: | siemens | model: | scalance xc216-4c g \ | scope: | lt | version: | 5.2.5 | Trust: 1.0 |
| vendor: | siemens | model: | scalance x307-3 | scope: | eq | version: | * | Trust: 1.0 |
| vendor: | siemens | model: | scalance x202-2pirt | scope: | lt | version: | 5.5.0 | Trust: 1.0 |
| vendor: | siemens | model: | scalance x310fe | scope: | eq | version: | * | Trust: 1.0 |
| vendor: | siemens | model: | scalance x320-3ldfe | scope: | eq | version: | * | Trust: 1.0 |
| vendor: | siemens | model: | scalance xb208 | scope: | lt | version: | 5.2.5 | Trust: 1.0 |
| vendor: | siemens | model: | scalance xb213-3 | scope: | lt | version: | 5.2.5 | Trust: 1.0 |
| vendor: | siemens | model: | scalance xf204 dna | scope: | lt | version: | 5.2.5 | Trust: 1.0 |
| vendor: | siemens | model: | scalance xc208g poe | scope: | lt | version: | 5.2.5 | Trust: 1.0 |
| vendor: | siemens | model: | scalance xp208 | scope: | lt | version: | 5.2.5 | Trust: 1.0 |
| vendor: | siemens | model: | scalance x308-2 | scope: | eq | version: | * | Trust: 1.0 |
| vendor: | siemens | model: | scalance x320-1fe | scope: | eq | version: | * | Trust: 1.0 |
| vendor: | siemens | model: | scalance xc216-4c g eec | scope: | lt | version: | 5.2.5 | Trust: 1.0 |
| vendor: | siemens | model: | scalance xf206-1 | scope: | lt | version: | 5.2.5 | Trust: 1.0 |
| vendor: | siemens | model: | scalance xc208eec | scope: | lt | version: | 5.2.5 | Trust: 1.0 |
| vendor: | siemens | model: | scalance x310 | scope: | eq | version: | * | Trust: 1.0 |
| vendor: | siemens | model: | scalance xf204-2ba irt | scope: | lt | version: | 5.2.5 | Trust: 1.0 |
| vendor: | siemens | model: | scalance xb213-3ld | scope: | lt | version: | 5.2.5 | Trust: 1.0 |
| vendor: | siemens | model: | scalance xc206-2 | scope: | lt | version: | 5.2.5 | Trust: 1.0 |
| vendor: | siemens | model: | scalance xc216 | scope: | lt | version: | 5.2.5 | Trust: 1.0 |
| vendor: | siemens | model: | scalance xc208g eec | scope: | lt | version: | 5.2.5 | Trust: 1.0 |
| vendor: | siemens | model: | scalance xf208 | scope: | lt | version: | 5.2.5 | Trust: 1.0 |
| vendor: | siemens | model: | scalance x204irt | scope: | lt | version: | 5.5.0 | Trust: 1.0 |
| vendor: | siemens | model: | scalance xp208eec | scope: | lt | version: | 5.2.5 | Trust: 1.0 |
| vendor: | siemens | model: | scalance xc208g | scope: | lt | version: | 5.2.5 | Trust: 1.0 |
| vendor: | siemens | model: | scalance x308-2lh\+ | scope: | eq | version: | * | Trust: 1.0 |
| vendor: | siemens | model: | scalance xc208g \ | scope: | lt | version: | 5.2.5 | Trust: 1.0 |
| vendor: | siemens | model: | scalance xf204-2 | scope: | lt | version: | 5.2.5 | Trust: 1.0 |
| vendor: | siemens | model: | scalance xc206-2sfp | scope: | lt | version: | 5.2.5 | Trust: 1.0 |
| vendor: | siemens | model: | scalance xc208 | scope: | lt | version: | 5.2.5 | Trust: 1.0 |
| vendor: | siemens | model: | scalance x200-4pirt | scope: | lt | version: | 5.5.0 | Trust: 1.0 |
| vendor: | siemens | model: | scalance xp208 \ | scope: | lt | version: | 5.2.5 | Trust: 1.0 |
| vendor: | siemens | model: | scalance xc224-4c g \ | scope: | lt | version: | 5.2.5 | Trust: 1.0 |
| vendor: | siemens | model: | scalance xp216poe eec | scope: | lt | version: | 5.2.5 | Trust: 1.0 |
| vendor: | シーメンス | model: | scalance x307-3ld | scope: | - | version: | - | Trust: 0.8 |
| vendor: | シーメンス | model: | scalance x201-3pirt | scope: | - | version: | - | Trust: 0.8 |
| vendor: | シーメンス | model: | scalance x200-4pirt | scope: | - | version: | - | Trust: 0.8 |
| vendor: | シーメンス | model: | scalance x202-2pirt | scope: | - | version: | - | Trust: 0.8 |
| vendor: | シーメンス | model: | scalance x204irt | scope: | - | version: | - | Trust: 0.8 |
| vendor: | シーメンス | model: | siplus net scalance x202-2pirt | scope: | - | version: | - | Trust: 0.8 |
| vendor: | シーメンス | model: | scalance x308-2 | scope: | - | version: | - | Trust: 0.8 |
| vendor: | シーメンス | model: | scalance x202-2irt | scope: | - | version: | - | Trust: 0.8 |
| vendor: | シーメンス | model: | scalance x308-2ld | scope: | - | version: | - | Trust: 0.8 |
| vendor: | シーメンス | model: | scalance x307-3 | scope: | - | version: | - | Trust: 0.8 |
| vendor: | siemens | model: | scalance x-200irt switch family | scope: | - | version: | - | Trust: 0.6 |
| vendor: | siemens | model: | scalance switch family | scope: | eq | version: | x-200 | Trust: 0.6 |
sources:
CNVD: CNVD-2021-02596 //
JVNDB: JVNDB-2020-015540 //
NVD: CVE-2020-15799
CVSS
SEVERITY | CVSSV2 | CVSSV3 | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
|
|
sources:
CNVD: CNVD-2021-02596 //
JVNDB: JVNDB-2020-015540 //
CNNVD: CNNVD-202101-856 //
NVD: CVE-2020-15799
PROBLEMTYPE DATA
| problemtype: | CWE-306 | Trust: 1.0 |
| problemtype: | Lack of authentication for important features (CWE-306) [NVD Evaluation ] | Trust: 0.8 |
sources:
JVNDB: JVNDB-2020-015540 //
NVD: CVE-2020-15799
THREAT TYPE
remote
Trust: 0.6
sources:
CNNVD: CNNVD-202101-856
TYPE
access control error
Trust: 0.6
sources:
CNNVD: CNNVD-202101-856
PATCH
| title: | SSA-139628 | url: | https://cert-portal.siemens.com/productcert/pdf/ssa-139628.pdf | Trust: 0.8 |
| title: | Patch for Scalance X Products key function certification missing vulnerability | url: | https://www.cnvd.org.cn/patchInfo/show/244024 | Trust: 0.6 |
| title: | Multiple Siemens SCALANCE Fixes for access control error vulnerabilities | url: | http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=139366 | Trust: 0.6 |
sources:
CNVD: CNVD-2021-02596 //
JVNDB: JVNDB-2020-015540 //
CNNVD: CNNVD-202101-856
EXTERNAL IDS
| db: | NVD | id: | CVE-2020-15799 | Trust: 3.0 |
| db: | SIEMENS | id: | SSA-139628 | Trust: 2.2 |
| db: | JVNDB | id: | JVNDB-2020-015540 | Trust: 0.8 |
| db: | CNVD | id: | CNVD-2021-02596 | Trust: 0.6 |
| db: | ICS CERT | id: | ICSA-21-012-05 | Trust: 0.6 |
| db: | AUSCERT | id: | ESB-2021.0127 | Trust: 0.6 |
| db: | CNNVD | id: | CNNVD-202101-856 | Trust: 0.6 |
sources:
CNVD: CNVD-2021-02596 //
JVNDB: JVNDB-2020-015540 //
CNNVD: CNNVD-202101-856 //
NVD: CVE-2020-15799
REFERENCES
| url: | https://cert-portal.siemens.com/productcert/pdf/ssa-139628.pdf | Trust: 2.2 |
| url: | https://nvd.nist.gov/vuln/detail/cve-2020-15799 | Trust: 1.4 |
| url: | https://us-cert.cisa.gov/ics/advisories/icsa-21-012-05 | Trust: 0.6 |
| url: | https://www.auscert.org.au/bulletins/esb-2021.0127/ | Trust: 0.6 |
sources:
CNVD: CNVD-2021-02596 //
JVNDB: JVNDB-2020-015540 //
CNNVD: CNNVD-202101-856 //
NVD: CVE-2020-15799
CREDITS
Siemens reported these vulnerabilities to CISA.
Trust: 0.6
sources:
CNNVD: CNNVD-202101-856
SOURCES
| db: | CNVD | id: | CNVD-2021-02596 |
| db: | JVNDB | id: | JVNDB-2020-015540 |
| db: | CNNVD | id: | CNNVD-202101-856 |
| db: | NVD | id: | CVE-2020-15799 |
LAST UPDATE DATE
2024-08-14T12:48:34.296000+00:00
SOURCES UPDATE DATE
| db: | CNVD | id: | CNVD-2021-02596 | date: | 2021-02-04T00:00:00 |
| db: | JVNDB | id: | JVNDB-2020-015540 | date: | 2021-10-04T05:21:00 |
| db: | CNNVD | id: | CNNVD-202101-856 | date: | 2021-09-15T00:00:00 |
| db: | NVD | id: | CVE-2020-15799 | date: | 2022-07-28T14:34:20.493 |
SOURCES RELEASE DATE
| db: | CNVD | id: | CNVD-2021-02596 | date: | 2021-01-13T00:00:00 |
| db: | JVNDB | id: | JVNDB-2020-015540 | date: | 2021-10-04T00:00:00 |
| db: | CNNVD | id: | CNNVD-202101-856 | date: | 2021-01-12T00:00:00 |
| db: | NVD | id: | CVE-2020-15799 | date: | 2021-01-12T21:15:16.370 |