CVE-2022-40631

Name of the Vulnerable Software and Affected Versions SCALANCE X200-4P IRT versions prior to V5.5.0 SCALANCE X201-3P IRT versions prior to V5.5.0 SCALANCE X201-3P IRT PRO versions prior to V5.5.0 SCALANCE X202-2IRT versions prior to V5.5.0 SCALANCE X202-2P IRT versions prior to V5.5.0 SCALANCE X202-2P IRT PRO versions prior to V5.5.0 SCALANCE X204-2 versions prior to V5.2.5 SCALANCE X204-2FM versions prior to V5.2.5 SCALANCE X204-2LD versions prior to V5.2.5 SCALANCE X204-2LD TS versions prior to V5.2.5 SCALANCE X204-2TS versions prior to V5.2.5 SCALANCE X204IRT versions prior to V5.5.0 SCALANCE X204IRT PRO versions prior to V5.5.0 SCALANCE X206-1 versions prior to V5.2.5 SCALANCE X206-1LD versions prior to V5.2.5 SCALANCE X208 versions prior to V5.2.5 SCALANCE X208PRO versions prior to V5.2.5 SCALANCE X212-2 versions prior to V5.2.5 SCALANCE X212-2LD versions prior to V5.2.5 SCALANCE X216 versions prior to V5.2.5 SCALANCE X224 versions prior to V5.2.5 SCALANCE XF201-3P IRT versions prior to V5.5.0 SCALANCE XF202-2P IRT versions prior to V5.5.0 SCALANCE XF204 versions prior to V5.2.5 SCALANCE XF204-2 versions prior to V5.2.5 SCALANCE XF204-2BA IRT versions prior to V5.5.0 SCALANCE XF204IRT versions prior to V5.5.0 SCALANCE XF206-1 versions prior to V5.2.5 SCALANCE XF208 versions prior to V5.2.5 SIPLUS NET SCALANCE X202-2P IRT versions prior to V5.5.0

Description A cross-site scripting vulnerability has been identified in the affected devices. This vulnerability could result in session hijacking if exploited by a threat actor.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.