CVE-2022-36324

Name of the Vulnerable Software and Affected Versions Siemens SCALANCE M-800 / S615 versions all Siemens SCALANCE W-1700 IEEE 802.11ac family versions all Siemens SCALANCE W-700 IEEE 802.11ax family versions all Siemens SCALANCE W-700 IEEE 802.11n family versions all Siemens SCALANCE XB-200 switch family versions all Siemens SCALANCE XC-200 switch family versions all Siemens SCALANCE XF-200BA switch family versions all Siemens SCALANCE XM-400 Family versions all Siemens SCALANCE XP-200 switch family versions all Siemens SCALANCE XR-300WG switch family versions all Siemens SCALANCE XR-500 Family versions all

Description The issue is related to the improper handling of SSL/TLS parameter renegotiation in affected devices. This could allow an unauthenticated remote attacker to bypass TCP brute force prevention, leading to a denial of service condition for the duration of the attack.

Recommendations For Siemens SCALANCE M-800 / S615, consider disabling the renegotiation of SSL/TLS parameters as a temporary workaround until a patch is available. For Siemens SCALANCE W-1700 IEEE 802.11ac family, restrict access to the affected devices to minimize the risk of exploitation. For Siemens SCALANCE W-700 IEEE 802.11ax family, avoid using the vulnerable SSL/TLS parameters in the affected API endpoints until the issue is resolved. For Siemens SCALANCE W-700 IEEE 802.11n family, consider applying configuration changes to prevent the exploitation of the vulnerability. For Siemens SCALANCE XB-200 switch family, XC-200 switch family, XF-200BA switch family, XM-400 Family, XP-200 switch family, XR-300WG switch family, and XR-500 Family, apply the recommended mitigation measures to prevent the denial of service condition. At the moment, there is no information about a newer version that contains a fix for this vulnerability.