| Max CVSS | 6.8 | Min CVSS | 3.5 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2017-2689 | 6.5 |
Siemens RUGGEDCOM ROX I (all versions) allow an authenticated user to bypass access restrictions in the web interface at port 10000/TCP to obtain privileged file system access or change configuration settings.
|
03-10-2019 - 00:03 | 29-03-2017 - 01:59 | |
| CVE-2017-6864 | 3.5 |
The integrated web server in Siemens RUGGEDCOM ROX I (all versions) at port 10000/TCP could allow an authenticated user to perform stored Cross-Site Scripting attacks.
|
12-07-2017 - 01:29 | 29-03-2017 - 01:59 | |
| CVE-2017-2686 | 4.0 |
Siemens RUGGEDCOM ROX I (all versions) contain a vulnerability that could allow an authenticated user to read arbitrary files through the web interface at port 10000/TCP and access sensitive information.
|
12-07-2017 - 01:29 | 29-03-2017 - 01:59 | |
| CVE-2017-2688 | 6.8 |
The integrated web server in Siemens RUGGEDCOM ROX I (all versions) at port 10000/TCP could allow remote attackers to perform actions with the privileges of an authenticated user, provided the targeted user has an active session and is induced into c
|
12-07-2017 - 01:29 | 29-03-2017 - 01:59 | |
| CVE-2017-2687 | 4.3 |
Siemens RUGGEDCOM ROX I (all versions) contain a vulnerability in the integrated web server at port 10000/TCP which is prone to reflected Cross-Site Scripting attacks if an unsuspecting user is induced to click on a malicious link.
|
12-07-2017 - 01:29 | 29-03-2017 - 01:59 |