CVE-2014-8478

Siemens SCALANCE X-300 and X-408 Firmware < 4.0 - Denial of Service via Malformed HTTP Requests

Title source: llm

Description

The web server on Siemens SCALANCE X-300 switches with firmware before 4.0 and SCALANCE X 408 switches with firmware before 4.0 allows remote attackers to cause a denial of service (reboot) via malformed HTTP requests.

References (2)

Core 2

Core References

Vendor Advisory x_refsource_confirm

http://www.siemens.com/innovation/pool/de/forschungsfelder/siemens_security_advisory_ssa-321046.pdf

Vendor Advisory x_refsource_confirm

https://cert-portal.siemens.com/productcert/pdf/ssa-321046.pdf

Scores

EPSS 0.0050

EPSS Percentile 66.4%

Details

CWE

CWE-22

Status published

Products (2)

siemens/scalance_x-300_series_firmware < 3.9.3

siemens/scalance_x-408_firmware < 3.9.3

Published Jan 21, 2015

Tracked Since Feb 18, 2026