CVE-2025-40568

Name of the Vulnerable Software and Affected Versions RUGGEDCOM RST2428P versions prior to V3.2 SCALANCE XC316-8 versions prior to V3.2 SCALANCE XC324-4 versions prior to V3.2 SCALANCE XC324-4 EEC versions prior to V3.2 SCALANCE XC332 versions prior to V3.2 SCALANCE XC416-8 versions prior to V3.2 SCALANCE XC424-4 versions prior to V3.2 SCALANCE XC432 versions prior to V3.2 SCALANCE XCH328 versions prior to V3.2 SCALANCE XCM324 versions prior to V3.2 SCALANCE XCM328 versions prior to V3.2 SCALANCE XCM332 versions prior to V3.2 SCALANCE XR302-32 versions prior to V3.2 SCALANCE XR322-12 versions prior to V3.2 SCALANCE XR326-8 versions prior to V3.2 SCALANCE XR326-8 EEC versions prior to V3.2 SCALANCE XR502-32 versions prior to V3.2 SCALANCE XR522-12 versions prior to V3.2 SCALANCE XR526-8 versions prior to V3.2 SCALANCE XRH334 versions prior to V3.2 SCALANCE XRM334 versions prior to V3.2

Description An internal session termination functionality in the web interface of affected products contains an incorrect authorization check. This could allow an authenticated remote attacker with a "guest" role to terminate legitimate users' sessions.

Recommendations Update RUGGEDCOM RST2428P to version V3.2 or later. Update SCALANCE XC316-8 to version V3.2 or later. Update SCALANCE XC324-4 to version V3.2 or later. Update SCALANCE XC324-4 EEC to version V3.2 or later. Update SCALANCE XC332 to version V3.2 or later. Update SCALANCE XC416-8 to version V3.2 or later. Update SCALANCE XC424-4 to version V3.2 or later. Update SCALANCE XC432 to version V3.2 or later. Update SCALANCE XCH328 to version V3.2 or later. Update SCALANCE XCM324 to version V3.2 or later. Update SCALANCE XCM328 to version V3.2 or later. Update SCALANCE XCM332 to version V3.2 or later. Update SCALANCE XR302-32 to version V3.2 or later. Update SCALANCE XR322-12 to version V3.2 or later. Update SCALANCE XR326-8 to version V3.2 or later. Update SCALANCE XR326-8 EEC to version V3.2 or later. Update SCALANCE XR502-32 to version V3.2 or later. Update SCALANCE XR522-12 to version V3.2 or later. Update SCALANCE XR526-8 to version V3.2 or later. Update SCALANCE XRH334 to version V3.2 or later. Update SCALANCE XRM334 to version V3.2 or later.