CVE-2014-8479

SCALANCE X-300 and X-408 Firmware < 4.0 - Authenticated Denial of Service via FTP Packet Handling

Title source: llm

Description

The FTP server on Siemens SCALANCE X-300 switches with firmware before 4.0 and SCALANCE X 408 switches with firmware before 4.0 allows remote authenticated users to cause a denial of service (reboot) via crafted FTP packets.

References (2)

Core 2

Core References

Vendor Advisory x_refsource_confirm

http://www.siemens.com/innovation/pool/de/forschungsfelder/siemens_security_advisory_ssa-321046.pdf

Vendor Advisory x_refsource_confirm

https://cert-portal.siemens.com/productcert/pdf/ssa-321046.pdf

Scores

EPSS 0.0042

EPSS Percentile 62.0%

Details

CWE

CWE-20

Status published

Products (2)

siemens/scalance_x-300_series_firmware < 3.9.3

siemens/scalance_x-408_firmware < 3.9.3

Published Jan 21, 2015

Tracked Since Feb 18, 2026