Siemens Ruggedcom Rugged Operating System — known CVE vulnerabilities
Every CVE whose affected-product data names Siemens Ruggedcom Rugged Operating System, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (9)
CVE-2012-1803 — CVSS 8.5 (high): RuggedCom Rugged Operating System (ROS) 3.10.x and earlier has a factory account with a password derived from the MAC Address field in the…
CVE-2012-2441 — CVSS 8.5 (high): RuggedCom Rugged Operating System (ROS) before 3.3 has a factory account with a password derived from the MAC Address field in a banner…
CVE-2013-6925 — CVSS 8.3 (high): The integrated HTTPS server in Siemens RuggedCom ROS before 3.12.2 allows remote attackers to hijack web sessions by predicting a session…
CVE-2013-6926 — CVSS 8.0 (high): The integrated HTTPS server in Siemens RuggedCom ROS before 3.12.2 allows remote authenticated users to bypass intended restrictions on…
CVE-2014-1966 — CVSS 7.8 (high): The SNMP implementation in Siemens RuggedCom ROS before 3.11, ROS 3.11 for RS950G, ROS 3.12 before 3.12.4, and ROS 4.0 for RSG2488 allows…
CVE-2014-2590 — CVSS 5.0 (medium): The web management interface in Siemens RuggedCom ROS before 3.11, ROS 3.11 before 3.11.5 for RS950G, ROS 3.12, and ROS 4.0 for RSG2488…
CVE-2015-5537 — CVSS 4.3 (medium): The SSL layer of the HTTPS service in Siemens RuggedCom ROS before 4.2.0 and ROX II does not properly implement CBC padding, which makes it…
CVE-2015-6675 — CVSS 4.3 (medium): Siemens RUGGEDCOM ROS 3.8.0 through 4.1.x permanently enables the IP forwarding feature, which allows remote attackers to bypass a VLAN…
CVE-2015-7836 — CVSS 3.3 (low): Siemens RUGGEDCOM ROS before 4.2.1 allows remote attackers to obtain sensitive information by sniffing the network for VLAN data within the…