Vulnetix
Try Vulnetix Request Demo
CVE-2021-37175 PUBLISHED CVSS 5 MEDIUM

A vulnerability has been identified in RUGGEDCOM ROX MX5000 (All versions < V2.14.1), RUGGEDCOM ROX RX1400 (All versions < V2.14.1), RUGGEDCOM ROX RX1500 (All versions < V2.14.1), RUGGEDCOM ROX RX1501 (All versions < V2.14.1), RUGGEDCOM ROX RX1510 (All versions < V2.14.1), RUGGEDCOM ROX RX1511 (All versions < V2.14.1), RUGGEDCOM ROX RX1512 (All versions < V2.14.1), RUGGEDCOM ROX RX1524 (All versions < V2.14.1), RUGGEDCOM ROX RX1536 (All versions < V2.14.1), RUGGEDCOM ROX RX5000 (All versions < V2.14.1). The affected devices do not properly handle permissions to traverse the file system. If exploited, an attacker could gain access to an overview of the complete file system on the affected devices.

EPSS 0.23% · 46.2th percentile

Risk Scores

CVSS v2.0
5
EPSS Score
0.23%
46.2th percentile

Affected Products

VendorProductVersions
siemensruggedcom_rox_mx5000_firmware0
SiemensRUGGEDCOM ROX RX1536All versions < V2.14.1
siemensruggedcom_rox_rx5000_firmware0
siemensruggedcom_rox_rx1524_firmware0
siemensruggedcom_rox_rx1536_firmware0
siemensruggedcom_rox_rx1500_firmware0
SiemensRUGGEDCOM ROX RX1524All versions < V2.14.1
SiemensRUGGEDCOM ROX RX1510All versions < V2.14.1
SiemensRUGGEDCOM ROX RX1511All versions < V2.14.1
SiemensRUGGEDCOM ROX RX5000All versions < V2.14.1
siemensruggedcom_rox_rx1400_firmware0
SiemensRUGGEDCOM ROX RX1501All versions < V2.14.1
siemensruggedcom_rox_rx1512_firmware0
siemensruggedcom_rox_rx1501_firmware0
SiemensRUGGEDCOM ROX RX1500All versions < V2.14.1
siemensruggedcom_rox_rx1511_firmware0
siemensruggedcom_rox_rx1510_firmware0
SiemensRUGGEDCOM ROX MX5000All versions < V2.14.1
SiemensRUGGEDCOM ROX RX1400All versions < V2.14.1
SiemensRUGGEDCOM ROX RX1512All versions < V2.14.1

Timeline

References

…and 2 more

Open in Interactive Console →