Siemens SCALANCE WAM766-1 6GHZ on EEC

CPE Details

Siemens SCALANCE WAM766-1 6GHZ on EEC
siemens
scalance_wam766-1_6ghz
-
2022-05-04
15h54 +00:00
2022-06-03
20h24 +00:00
CPE NVD
Alerte pour un CPE
Restez informé de toutes modifications pour un CPE spécifique.
Gestion des notifications

CPE Name: cpe:2.3:h:siemens:scalance_wam766-1_6ghz:-:*:*:*:*:*:eec:*

Informations

Vendor

siemens

Product

scalance_wam766-1_6ghz

Version

-

Target Hardware

eec

Related CVE

Open and find in CVE List

CVE ID Publié Description Score Gravité
CVE-2022-46140 2022-12-12 23h00 +00:00 Affected devices use a weak encryption scheme to encrypt the debug zip file. This could allow an authenticated attacker to decrypt the contents of the file and retrieve debug information about the system.
7.1
Haute
CVE-2022-46142 2022-12-12 23h00 +00:00 Affected devices store the CLI user passwords encrypted in flash memory. Attackers with physical access to the device could retrieve the file and decrypt the CLI user passwords.
5.2
Moyen
CVE-2022-46143 2022-12-12 23h00 +00:00 Affected devices do not check the TFTP blocksize correctly. This could allow an authenticated attacker to read from an uninitialized buffer that potentially contains previously allocated data.
5.1
Moyen
CVE-2020-26140 2021-05-11 17h34 +00:00 An issue was discovered in the ALFA Windows 10 driver 6.1316.1209 for AWUS036H. The WEP, WPA, WPA2, and WPA3 implementations accept plaintext frames in a protected Wi-Fi network. An adversary can abuse this to inject arbitrary data frames independent of the network configuration.
6.5
Moyen
CVE-2020-24588 2021-05-10 22h00 +00:00 The 802.11 standard that underpins Wi-Fi Protected Access (WPA, WPA2, and WPA3) and Wired Equivalent Privacy (WEP) doesn't require that the A-MSDU flag in the plaintext QoS header field is authenticated. Against devices that support receiving non-SSP A-MSDU frames (which is mandatory as part of 802.11n), an adversary can abuse this to inject arbitrary network packets.
3.5
Bas