Detections
Analytics
Siemens SCALANCE and RUGGEDCOM Products Improper Neutralization of Special Elements in Output Used By a Downstream Component (CVE-2022-36323)
critical Tenable OT Security Plugin ID 500742
Synopsis
The remote OT asset is affected by a vulnerability.Description
Affected devices do not properly sanitize an input field. This could allow an authenticated remote attacker with administrative privileges to inject code or spawn a system root shell.This plugin only works with Tenable.ot.
Please visit https://www.tenable.com/products/tenable-ot for more information.
Solution
Refer to the vendor advisory.See Also
https://cert-portal.siemens.com/productcert/html/ssa-710008.html
https://cert-portal.siemens.com/productcert/html/ssa-019200.html
https://support.industry.siemens.com/cs/ww/en/view/109996102/
https://support.industry.siemens.com/cs/ww/en/view/109817768/
https://support.industry.siemens.com/cs/ww/en/view/109813051/
https://support.industry.siemens.com/cs/ww/en/view/109810992/
https://support.industry.siemens.com/cs/ww/en/view/109815650/
https://support.industry.siemens.com/cs/ww/en/view/109818003/
https://www.cisa.gov/news-events/ics-advisories/icsa-22-223-07
https://www.cisa.gov/news-events/ics-advisories/icsa-26-111-07
Plugin Details
Severity: Critical
ID: 500742
File Name: tenable_ot_siemens_CVE-2022-36323.nasl
Version: 1.14
Type: Remote
Family: Tenable.ot
Published: 1/25/2023
Updated: 4/28/2026
Supported Sensors: Tenable OT Security
Risk Information
VPR
Risk Factor: High
Score: 7.4
CVSS v2
Risk Factor: High
Base Score: 8.3
Temporal Score: 6.1
Vector: CVSS2#AV:N/AC:L/Au:M/C:C/I:C/A:C
CVSS Score Source: CVE-2022-36323
CVSS v3
Risk Factor: Critical
Base Score: 9.1
Temporal Score: 7.9
Vector: CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C
Vulnerability Information
CPE: cpe:/o:siemens:scalance_w761-1_rj45_firmware:6.6.0, cpe:/o:siemens:scalance_m876-3_firmware:7.1.2, cpe:/o:siemens:scalance_w788-2_m12_eec_firmware:6.6.0, cpe:/o:siemens:scalance_xb208_%28e%2fip%29_firmware:4.4, cpe:/o:siemens:scalance_xb216_%28pn%29_firmware:4.4, cpe:/o:siemens:scalance_xc206-2sfp_g_eec_firmware:4.4, cpe:/o:siemens:scalance_xr326-2c_poe_wg_firmware:4.4, cpe:/o:siemens:scalance_xr528-6m_%282hr2%29_firmware:6.6, cpe:/o:siemens:scalance_w788-1_rj45_firmware:6.6.0, cpe:/o:siemens:scalance_xc206-2g_poe_%2854_v_dc%29_firmware:4.4, cpe:/o:siemens:scalance_wam766-1_%28us%29_firmware:2.0.0, cpe:/o:siemens:scalance_xp216_%28ethernet%2fip%29_firmware:4.4, cpe:/o:siemens:scalance_xc224-4c_g_%28eip_def.%29_firmware:4.4, cpe:/o:siemens:scalance_xc216-4c_g_%28eip_def.%29_firmware:4.4, cpe:/o:siemens:scalance_w786-2ia_rj45_firmware:6.6.0, cpe:/o:siemens:scalance_xc208g_eec_firmware:4.4, cpe:/o:siemens:scalance_w778-1_m12_eec_firmware:6.6.0, cpe:/o:siemens:scalance_w748-1_rj45_firmware:6.6.0, cpe:/o:siemens:ruggedcom_rm1224_lte%284g%29_nam_firmware:7.1.2, cpe:/o:siemens:scalance_w774-1_m12_eec_firmware:6.6.0, cpe:/o:siemens:scalance_xb205-3ld_%28sc%2c_e%2fip%29_firmware:4.4, cpe:/o:siemens:scalance_xb205-3_%28sc%2c_pn%29_firmware:4.4, cpe:/o:siemens:scalance_s615_lan-router_firmware:7.1.2, cpe:/o:siemens:scalance_sc632-2c_firmware:2.3.1, cpe:/o:siemens:siplus_net_scalance_xc208_firmware:4.4, cpe:/o:siemens:scalance_xc208eec_firmware:4.4, cpe:/o:siemens:scalance_xc216eec_firmware:4.4, cpe:/o:siemens:scalance_xr328-4c_wg_%2824xfe%2c_4xge%2c_24v%29_firmware:4.4, cpe:/o:siemens:scalance_xr526-8c%2c_2x230v_%28l3_int.%29_firmware:6.6, cpe:/o:siemens:scalance_xc206-2_%28st%2fbfoc%29_firmware:4.4, cpe:/o:siemens:scalance_xc224-4c_g_firmware:4.4, cpe:/o:siemens:siplus_net_scalance_xc206-2_firmware:4.4, cpe:/o:siemens:scalance_xr552-12m_%282hr2%2c_l3_int.%29_firmware:6.6, cpe:/o:siemens:scalance_xp208eec_firmware:4.4, cpe:/o:siemens:scalance_xc216-4c_firmware:4.4, cpe:/o:siemens:scalance_xp208_%28ethernet%2fip%29_firmware:4.4, cpe:/o:siemens:scalance_w774-1_rj45_%28usa%29_firmware:6.6.0, cpe:/o:siemens:scalance_xf204_firmware:4.4, cpe:/o:siemens:scalance_xc224_firmware:4.4, cpe:/o:siemens:scalance_xc206-2g_poe_firmware:4.4, cpe:/o:siemens:scalance_xp208_firmware:4.4, cpe:/o:siemens:scalance_xb213-3ld_%28sc%2c_e%2fip%29_firmware:4.4, cpe:/o:siemens:scalance_xr526-8c%2c_1x230v_%28l3_int.%29_firmware:6.6, cpe:/o:siemens:scalance_w722-1_rj45_firmware:6.6.0, cpe:/o:siemens:scalance_wam766-1_eec_firmware:2.0.0, cpe:/o:siemens:scalance_xf204-2ba_firmware:4.4, cpe:/o:siemens:scalance_mum856-1_%28eu%29_firmware:7.1.2, cpe:/o:siemens:scalance_xb213-3ld_%28sc%2c_pn%29_firmware:4.4, cpe:/o:siemens:ruggedcom_rm1224_lte%284g%29_eu_firmware:7.1.2, cpe:/o:siemens:scalance_wum763-1_firmware:2.0.0, cpe:/o:siemens:scalance_xc208g_firmware:4.4, cpe:/o:siemens:scalance_xp216_firmware:4.4, cpe:/o:siemens:scalance_xr524-8c%2c_2x230v_firmware:6.6, cpe:/o:siemens:scalance_m804pb_firmware:7.1.2, cpe:/o:siemens:scalance_wum766-1_%28usa%29_firmware:2.0.0, cpe:/o:siemens:siplus_net_scalance_xc206-2sfp_firmware:4.4, cpe:/o:siemens:scalance_xc208_firmware:4.4, cpe:/o:siemens:scalance_w1788-1_m12_firmware, cpe:/o:siemens:scalance_w734-1_rj45_%28usa%29_firmware:6.6.0, cpe:/o:siemens:scalance_xc208g_%28eip_def.%29_firmware:4.4, cpe:/o:siemens:scalance_m874-2_firmware:7.1.2, cpe:/o:siemens:scalance_xr526-8c%2c_24v_firmware:6.6, cpe:/o:siemens:scalance_xc206-2sfp_g_%28eip_def.%29_firmware:4.4, cpe:/o:siemens:scalance_xr324wg_%2824_x_fe%2c_dc_24v%29_firmware:4.4, cpe:/o:siemens:scalance_xb205-3_%28st%2c_pn%29_firmware:4.4, cpe:/o:siemens:scalance_xb213-3_%28sc%2c_e%2fip%29_firmware:4.4, cpe:/o:siemens:scalance_xf204_dna_firmware:4.4, cpe:/o:siemens:scalance_xm416-4c_%28l3_int.%29_firmware:6.6, cpe:/o:siemens:scalance_m876-4_%28eu%29_firmware:7.1.2, cpe:/o:siemens:scalance_xm408-4c_firmware:6.6, cpe:/o:siemens:scalance_xr328-4c_wg_%2824xfe%2c_4xge%2cdc24v%29_firmware:4.4, cpe:/o:siemens:scalance_xr328-4c_wg_%2828xge%2c_ac_230v%29_firmware:4.4, cpe:/o:siemens:scalance_xb208_%28pn%29_firmware:4.4, cpe:/o:siemens:scalance_w738-1_m12_firmware:6.6.0, cpe:/o:siemens:scalance_xc216-3g_poe_firmware:4.4, cpe:/o:siemens:scalance_xm416-4c_firmware:6.6, cpe:/o:siemens:scalance_xc206-2g_poe_eec_%2854_v_dc%29_firmware:4.4, cpe:/o:siemens:scalance_m816-1_adsl-router_firmware:7.1.2, cpe:/o:siemens:scalance_xc216-4c_g_eec_firmware:4.4, cpe:/o:siemens:scalance_m876-4_%28nam%29_firmware:7.1.2, cpe:/o:siemens:scalance_wam763-1_firmware:2.0.0, cpe:/o:siemens:scalance_m876-3_%28rok%29_firmware:7.1.2, cpe:/o:siemens:siplus_net_scalance_xc216-4c_firmware:4.4, cpe:/o:siemens:scalance_w788-2_rj45_firmware:6.6.0, cpe:/o:siemens:scalance_sc626-2c_firmware:2.3.1, cpe:/o:siemens:scalance_xc216-4c_g_firmware:4.4, cpe:/o:siemens:scalance_xc216_firmware:4.4, cpe:/o:siemens:scalance_w786-2_rj45_firmware:6.6.0, cpe:/o:siemens:scalance_w778-1_m12_eec_%28usa%29_firmware:6.6.0, cpe:/o:siemens:scalance_m874-3_firmware:7.1.2, cpe:/o:siemens:scalance_xr526-8c%2c_1x230v_firmware:6.6, cpe:/o:siemens:scalance_xr324wg_%2824_x_fe%2c_ac_230v%29_firmware:4.4, cpe:/o:siemens:scalance_xr524-8c%2c_1x230v_firmware:6.6, cpe:/o:siemens:scalance_xr528-6m_%282hr2%2c_l3_int.%29_firmware:6.6, cpe:/o:siemens:scalance_xr528-6m_%28l3_int.%29_firmware:6.6, cpe:/o:siemens:scalance_xr552-12m_firmware:6.6, cpe:/o:siemens:scalance_w788-2_m12_firmware:6.6.0, cpe:/o:siemens:scalance_mum853-1_%28eu%29_firmware:7.1.2, cpe:/o:siemens:scalance_xc208g_poe_firmware:4.4, cpe:/o:siemens:scalance_w721-1_rj45_firmware:6.6.0, cpe:/o:siemens:scalance_w1788-2_eec_m12_firmware, cpe:/o:siemens:scalance_w734-1_rj45_firmware:6.6.0, cpe:/o:siemens:scalance_xr524-8c%2c_24v_%28l3_int.%29_firmware:6.6, cpe:/o:siemens:scalance_w778-1_m12_firmware:6.6.0, cpe:/o:siemens:scalance_xr328-4c_wg_%2828xge%2c_dc_24v%29_firmware:4.4, cpe:/o:siemens:scalance_xr524-8c%2c_2x230v_%28l3_int.%29_firmware:6.6, cpe:/o:siemens:scalance_xr552-12m_%282hr2%29_firmware:6.6, cpe:/o:siemens:scalance_xc206-2_%28sc%29_firmware:4.4, cpe:/o:siemens:scalance_xr328-4c_wg_%2824xfe%2c4xge%2cac230v%29_firmware:4.4, cpe:/o:siemens:scalance_xr526-8c%2c_2x230v_firmware:6.6, cpe:/o:siemens:scalance_wum766-1_firmware:2.0.0, cpe:/o:siemens:scalance_w1788-2ia_m12_firmware, cpe:/o:siemens:scalance_xc206-2sfp_firmware:4.4, cpe:/o:siemens:scalance_xp216poe_eec_firmware:4.4, cpe:/o:siemens:scalance_xb213-3_%28st%2c_pn%29_firmware:4.4, cpe:/o:siemens:scalance_mum856-1_%28row%29_firmware:7.1.2, cpe:/o:siemens:scalance_xr526-8c%2c_24v_%28l3_int.%29_firmware:6.6, cpe:/o:siemens:scalance_m812-1_adsl-router_firmware:7.1.2, cpe:/o:siemens:scalance_wam766-1_eec_%28us%29_firmware:2.0.0, cpe:/o:siemens:scalance_xc224-4c_g_eec_firmware:4.4, cpe:/o:siemens:scalance_xc206-2sfp_g_firmware:4.4, cpe:/o:siemens:scalance_xm408-4c_%28l3_int.%29_firmware:6.6, cpe:/o:siemens:scalance_m826-2_shdsl-router_firmware:7.1.2, cpe:/o:siemens:scalance_wam766-1_firmware:2.0.0, cpe:/o:siemens:scalance_xr524-8c%2c_1x230v_%28l3_int.%29_firmware:6.6, cpe:/o:siemens:scalance_xr524-8c%2c_24v_firmware:6.6, cpe:/o:siemens:scalance_xp216eec_firmware:4.4, cpe:/o:siemens:scalance_xb213-3_%28st%2c_e%2fip%29_firmware:4.4, cpe:/o:siemens:scalance_sc622-2c_firmware:2.3.1, cpe:/o:siemens:scalance_w1788-2_m12_firmware, cpe:/o:siemens:scalance_w774-1_rj45_firmware:6.6.0, cpe:/o:siemens:scalance_w1748-1_m12_firmware, cpe:/o:siemens:scalance_xr326-2c_poe_wg_%28without_ul%29_firmware:4.4, cpe:/o:siemens:scalance_xb216_%28e%2fip%29_firmware:4.4, cpe:/o:siemens:scalance_xb213-3_%28sc%2c_pn%29_firmware:4.4, cpe:/o:siemens:scalance_w786-2_sfp_firmware:6.6.0, cpe:/o:siemens:scalance_xc216-3g_poe_%2854_v_dc%29_firmware:4.4, cpe:/o:siemens:scalance_sc646-2c_firmware:2.3.1, cpe:/o:siemens:scalance_sc642-2c_firmware:2.3.1, cpe:/o:siemens:scalance_w786-1_rj45_firmware:6.6.0, cpe:/o:siemens:scalance_xf204-2ba_dna_firmware:4.4, cpe:/o:siemens:scalance_xc208g_poe_%2854_v_dc%29_firmware:4.4, cpe:/o:siemens:scalance_xb205-3_%28st%2c_e%2fip%29_firmware:4.4, cpe:/o:siemens:scalance_xm408-8c_firmware:6.6, cpe:/o:siemens:scalance_xr528-6m_firmware:6.6, cpe:/o:siemens:scalance_xc206-2sfp_eec_firmware:4.4, cpe:/o:siemens:scalance_xb205-3ld_%28sc%2c_pn%29_firmware:4.4, cpe:/o:siemens:scalance_sc636-2c_firmware:2.3.1, cpe:/o:siemens:scalance_w788-1_m12_firmware:6.6.0, cpe:/o:siemens:scalance_xm408-8c_%28l3_int.%29_firmware:6.6, cpe:/o:siemens:scalance_xp208poe_eec_firmware:4.4, cpe:/o:siemens:scalance_w748-1_m12_firmware:6.6.0
Required KB Items: Tenable.ot/Siemens
Exploit Ease: No known exploits are available
Patch Publication Date: 8/10/2022
Vulnerability Publication Date: 8/10/2022
Reference Information
CVE: CVE-2022-36323
CWE: 74
ICSA: 22-223-07, 26-111-07