SIEMENS SCALANCE X Industrial Ethernet Switches

Siemens SCALANCE X Industrial Ethernet Switches have had a few vulnerabilities before. A saved Shodan search show there are at least two available to the Internet, both X204-2 models. The X-200 has two issues:

First it appears to give up the internal IP in the Title element of the HTML:

scalance01

Second according to the user manual it has default administrative credentials:

Enter your password. If you have not yet set a password, the default passwords as
shipped apply: Enter admin if you selected “admin” as the user name or user if you
selected “user”.

The ‘user’ role is read only.

Advertisements

Tags: , ,

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s


%d bloggers like this: