{"dataType":"CVE_RECORD","dataVersion":"5.1","cveMetadata":{"state":"PUBLISHED","cveId":"CVE-2022-40631","assignerOrgId":"cec7a2ec-15b4-4faf-bd53-b40f371f3a77","assignerShortName":"siemens","dateUpdated":"2024-08-03T12:21:46.592Z","dateReserved":"2022-09-13T00:00:00.000Z","datePublished":"2022-10-11T00:00:00.000Z"},"containers":{"cna":{"providerMetadata":{"orgId":"cec7a2ec-15b4-4faf-bd53-b40f371f3a77","shortName":"siemens","dateUpdated":"2022-10-11T00:00:00.000Z"},"descriptions":[{"lang":"en","value":"A vulnerability has been identified in SCALANCE X200-4P IRT (All versions < V5.5.0), SCALANCE X201-3P IRT (All versions < V5.5.0), SCALANCE X201-3P IRT PRO (All versions < V5.5.0), SCALANCE X202-2IRT (All versions < V5.5.0), SCALANCE X202-2P IRT (All versions < V5.5.0), SCALANCE X202-2P IRT PRO (All versions < V5.5.0), SCALANCE X204-2 (All versions < V5.2.5), SCALANCE X204-2FM (All versions < V5.2.5), SCALANCE X204-2LD (All versions < V5.2.5), SCALANCE X204-2LD TS (All versions < V5.2.5), SCALANCE X204-2TS (All versions < V5.2.5), SCALANCE X204IRT (All versions < V5.5.0), SCALANCE X204IRT PRO (All versions < V5.5.0), SCALANCE X206-1 (All versions < V5.2.5), SCALANCE X206-1LD (All versions < V5.2.5), SCALANCE X208 (All versions < V5.2.5), SCALANCE X208PRO (All versions < V5.2.5), SCALANCE X212-2 (All versions < V5.2.5), SCALANCE X212-2LD (All versions < V5.2.5), SCALANCE X216 (All versions < V5.2.5), SCALANCE X224 (All versions < V5.2.5), SCALANCE XF201-3P IRT (All versions < V5.5.0), SCALANCE XF202-2P IRT (All versions < V5.5.0), SCALANCE XF204 (All versions < V5.2.5), SCALANCE XF204-2 (All versions < V5.2.5), SCALANCE XF204-2BA IRT (All versions < V5.5.0), SCALANCE XF204IRT (All versions < V5.5.0), SCALANCE XF206-1 (All versions < V5.2.5), SCALANCE XF208 (All versions < V5.2.5), SIPLUS NET SCALANCE X202-2P IRT (All versions < V5.5.0). There is a cross-site scripting vulnerability on the affected devices, that if used by a threat actor, it could result in session hijacking."}],"affected":[{"vendor":"Siemens","product":"SCALANCE X200-4P IRT","versions":[{"version":"All versions < V5.5.0","status":"affected"}]},{"vendor":"Siemens","product":"SCALANCE X201-3P IRT","versions":[{"version":"All versions < V5.5.0","status":"affected"}]},{"vendor":"Siemens","product":"SCALANCE X201-3P IRT PRO","versions":[{"version":"All versions < V5.5.0","status":"affected"}]},{"vendor":"Siemens","product":"SCALANCE X202-2IRT","versions":[{"version":"All versions < V5.5.0","status":"affected"}]},{"vendor":"Siemens","product":"SCALANCE X202-2P IRT","versions":[{"version":"All versions < V5.5.0","status":"affected"}]},{"vendor":"Siemens","product":"SCALANCE X202-2P IRT PRO","versions":[{"version":"All versions < V5.5.0","status":"affected"}]},{"vendor":"Siemens","product":"SCALANCE X204-2","versions":[{"version":"All versions < V5.2.5","status":"affected"}]},{"vendor":"Siemens","product":"SCALANCE X204-2FM","versions":[{"version":"All versions < V5.2.5","status":"affected"}]},{"vendor":"Siemens","product":"SCALANCE X204-2LD","versions":[{"version":"All versions < V5.2.5","status":"affected"}]},{"vendor":"Siemens","product":"SCALANCE X204-2LD TS","versions":[{"version":"All versions < V5.2.5","status":"affected"}]},{"vendor":"Siemens","product":"SCALANCE X204-2TS","versions":[{"version":"All versions < V5.2.5","status":"affected"}]},{"vendor":"Siemens","product":"SCALANCE X204IRT","versions":[{"version":"All versions < V5.5.0","status":"affected"}]},{"vendor":"Siemens","product":"SCALANCE X204IRT PRO","versions":[{"version":"All versions < V5.5.0","status":"affected"}]},{"vendor":"Siemens","product":"SCALANCE X206-1","versions":[{"version":"All versions < V5.2.5","status":"affected"}]},{"vendor":"Siemens","product":"SCALANCE X206-1LD","versions":[{"version":"All versions < V5.2.5","status":"affected"}]},{"vendor":"Siemens","product":"SCALANCE X208","versions":[{"version":"All versions < V5.2.5","status":"affected"}]},{"vendor":"Siemens","product":"SCALANCE X208PRO","versions":[{"version":"All versions < V5.2.5","status":"affected"}]},{"vendor":"Siemens","product":"SCALANCE X212-2","versions":[{"version":"All versions < V5.2.5","status":"affected"}]},{"vendor":"Siemens","product":"SCALANCE X212-2LD","versions":[{"version":"All versions < V5.2.5","status":"affected"}]},{"vendor":"Siemens","product":"SCALANCE X216","versions":[{"version":"All versions < V5.2.5","status":"affected"}]},{"vendor":"Siemens","product":"SCALANCE X224","versions":[{"version":"All versions < V5.2.5","status":"affected"}]},{"vendor":"Siemens","product":"SCALANCE XF201-3P IRT","versions":[{"version":"All versions < V5.5.0","status":"affected"}]},{"vendor":"Siemens","product":"SCALANCE XF202-2P IRT","versions":[{"version":"All versions < V5.5.0","status":"affected"}]},{"vendor":"Siemens","product":"SCALANCE XF204","versions":[{"version":"All versions < V5.2.5","status":"affected"}]},{"vendor":"Siemens","product":"SCALANCE XF204-2","versions":[{"version":"All versions < V5.2.5","status":"affected"}]},{"vendor":"Siemens","product":"SCALANCE XF204-2BA IRT","versions":[{"version":"All versions < V5.5.0","status":"affected"}]},{"vendor":"Siemens","product":"SCALANCE XF204IRT","versions":[{"version":"All versions < V5.5.0","status":"affected"}]},{"vendor":"Siemens","product":"SCALANCE XF206-1","versions":[{"version":"All versions < V5.2.5","status":"affected"}]},{"vendor":"Siemens","product":"SCALANCE XF208","versions":[{"version":"All versions < V5.2.5","status":"affected"}]},{"vendor":"Siemens","product":"SIPLUS NET SCALANCE X202-2P IRT","versions":[{"version":"All versions < V5.5.0","status":"affected"}]}],"references":[{"url":"https://cert-portal.siemens.com/productcert/pdf/ssa-501891.pdf"}],"problemTypes":[{"descriptions":[{"type":"CWE","lang":"en","description":"CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')","cweId":"CWE-79"}]}]},"adp":[{"providerMetadata":{"orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE","dateUpdated":"2024-08-03T12:21:46.592Z"},"title":"CVE Program Container","references":[{"url":"https://cert-portal.siemens.com/productcert/pdf/ssa-501891.pdf","tags":["x_transferred"]}]}]}}