CNVD-2022-17777 — Vulnetix

CNVD-2022-17777 PUBLISHED

RUGGEDCOM ROS-based设备通常是交换机和串行到以太网设备，用于连接在恶劣环境下运行的设备，如电力设施变电站和交通控制柜。 Siemens RUGGEDCOM Devices存在信息泄露漏洞，攻击者可利用漏洞获得访问密码。

Affected Products

Vendor	Product	Versions
	Siemens RUGGEDCOM ROS RMC40 < V5.6.0
	Siemens RUGGEDCOM ROS RS900W < V5.6.0
	Siemens RUGGEDCOM ROS RS969 < V5.6.0
	Siemens RUGGEDCOM ROS RST916P < V5.6.0
	Siemens RUGGEDCOM ROS RSG908C < V5.6.0
	Siemens RUGGEDCOM ROS RSG2300 < V5.6.0
	Siemens RUGGEDCOM ROS RS401 < V5.6.0
	Siemens RUGGEDCOM ROS RMC30 < V5.6.0
	Siemens RUGGEDCOM ROS RSG900G < V5.6.0
	Siemens RUGGEDCOM ROS RS8000A < V5.6.0
	Siemens RUGGEDCOM ROS RSG2100P < V5.6.0
	Siemens RUGGEDCOM ROS RSG2488 < V5.6.0
	Siemens RUGGEDCOM ROS RST2228 < V5.6.0
	Siemens RUGGEDCOM ROS i803 < V5.6.0
	Siemens RUGGEDCOM ROS RMC41 < V5.6.0
	Siemens RUGGEDCOM ROS RSG907R < V5.6.0
	Siemens RUGGEDCOM ROS RS416 < V5.6.0
	Siemens RUGGEDCOM ROS RSG900R < V5.6.0
	Siemens RUGGEDCOM ROS RS940G < V5.6.0
	Siemens RUGGEDCOM ROS RS400 < V5.6.0

…and 34 more

Timeline

Mar 9, 2022 CVE ID Reserved
Mar 9, 2022 CVE Published

References

https://cert-portal.siemens.com/productcert/pdf/ssa-764417.pdf url

Open in Interactive Console →

$ Console Community · 100/wk Open console ›