Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2017-6864 (GCVE-0-2017-6864)
Vulnerability from cvelistv5
Published
2017-03-29 01:00
Modified
2024-08-05 15:41
Severity ?
VLAI Severity ?
EPSS score ?
CWE
- CWE-79 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Summary
The integrated web server in Siemens RUGGEDCOM ROX I (all versions) at port 10000/TCP could allow an authenticated user to perform stored Cross-Site Scripting attacks.
References
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| n/a | RUGGEDCOM ROX I All versions |
Version: RUGGEDCOM ROX I All versions |
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-05T15:41:17.697Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "97170",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/97170"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-327980.pdf"
},
{
"name": "1038160",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK",
"x_transferred"
],
"url": "http://www.securitytracker.com/id/1038160"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://ics-cert.us-cert.gov/advisories/ICSA-17-087-01"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "RUGGEDCOM ROX I All versions",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "RUGGEDCOM ROX I All versions"
}
]
}
],
"datePublic": "2017-03-28T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "The integrated web server in Siemens RUGGEDCOM ROX I (all versions) at port 10000/TCP could allow an authenticated user to perform stored Cross-Site Scripting attacks."
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-79",
"description": "CWE-79: Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2017-07-11T09:57:01",
"orgId": "cec7a2ec-15b4-4faf-bd53-b40f371f3a77",
"shortName": "siemens"
},
"references": [
{
"name": "97170",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/97170"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-327980.pdf"
},
{
"name": "1038160",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK"
],
"url": "http://www.securitytracker.com/id/1038160"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://ics-cert.us-cert.gov/advisories/ICSA-17-087-01"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "productcert@siemens.com",
"ID": "CVE-2017-6864",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "RUGGEDCOM ROX I All versions",
"version": {
"version_data": [
{
"version_value": "RUGGEDCOM ROX I All versions"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "The integrated web server in Siemens RUGGEDCOM ROX I (all versions) at port 10000/TCP could allow an authenticated user to perform stored Cross-Site Scripting attacks."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-79: Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "97170",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/97170"
},
{
"name": "https://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-327980.pdf",
"refsource": "CONFIRM",
"url": "https://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-327980.pdf"
},
{
"name": "1038160",
"refsource": "SECTRACK",
"url": "http://www.securitytracker.com/id/1038160"
},
{
"name": "https://ics-cert.us-cert.gov/advisories/ICSA-17-087-01",
"refsource": "MISC",
"url": "https://ics-cert.us-cert.gov/advisories/ICSA-17-087-01"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "cec7a2ec-15b4-4faf-bd53-b40f371f3a77",
"assignerShortName": "siemens",
"cveId": "CVE-2017-6864",
"datePublished": "2017-03-29T01:00:00",
"dateReserved": "2017-03-13T00:00:00",
"dateUpdated": "2024-08-05T15:41:17.697Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"nvd": "{\"cve\":{\"id\":\"CVE-2017-6864\",\"sourceIdentifier\":\"productcert@siemens.com\",\"published\":\"2017-03-29T01:59:02.720\",\"lastModified\":\"2025-04-20T01:37:25.860\",\"vulnStatus\":\"Deferred\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"The integrated web server in Siemens RUGGEDCOM ROX I (all versions) at port 10000/TCP could allow an authenticated user to perform stored Cross-Site Scripting attacks.\"},{\"lang\":\"es\",\"value\":\"El servidor web integrado en Siemens RUGGEDCOM ROX I (todas las versiones) en el puerto 10000/TCP podr\u00eda permitir a un usuario autenticado realizar ataques de env\u00edo de secuencias de comandos en sitios cruzados almacenados.\"}],\"metrics\":{\"cvssMetricV30\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.0\",\"vectorString\":\"CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N\",\"baseScore\":5.4,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"REQUIRED\",\"scope\":\"CHANGED\",\"confidentialityImpact\":\"LOW\",\"integrityImpact\":\"LOW\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":2.3,\"impactScore\":2.7}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:M/Au:S/C:N/I:P/A:N\",\"baseScore\":3.5,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"SINGLE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"NONE\"},\"baseSeverity\":\"LOW\",\"exploitabilityScore\":6.8,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"productcert@siemens.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-79\"}]},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-79\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:ruggedcom_rox_i:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"2.9.0\",\"matchCriteriaId\":\"AE0398E8-031B-4072-A3A5-BF3A2A361AAB\"}]}]}],\"references\":[{\"url\":\"http://www.securityfocus.com/bid/97170\",\"source\":\"productcert@siemens.com\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"http://www.securitytracker.com/id/1038160\",\"source\":\"productcert@siemens.com\"},{\"url\":\"https://ics-cert.us-cert.gov/advisories/ICSA-17-087-01\",\"source\":\"productcert@siemens.com\"},{\"url\":\"https://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-327980.pdf\",\"source\":\"productcert@siemens.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/97170\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"http://www.securitytracker.com/id/1038160\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://ics-cert.us-cert.gov/advisories/ICSA-17-087-01\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-327980.pdf\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]}]}}"
}
}
var-201703-1342
Vulnerability from variot
The integrated web server in Siemens RUGGEDCOM ROX I (all versions) at port 10000/TCP could allow an authenticated user to perform stored Cross-Site Scripting attacks. SiemensRuggedCom's ROX-based firewall devices are used to connect devices in harsh environments such as substations, traffic management chassis, and more. Siemens RUGGEDCOM ROX I is prone to the following security vulnerabilities: : 1. A HTML-injection vulnerability 2. An information-disclosure vulnerability 4. An authorization-bypass vulnerability 5. A cross-site request-forgery vulnerability An attacker may leverage these issues to execute HTML and script code in the browser of an unsuspecting user in the context of the affected site, disclose sensitive information, perform certain unauthorized actions actions, gain unauthorized access, or bypass certain security restrictions
Show details on source website{
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
"affected_products": {
"@id": "https://www.variotdbs.pl/ref/affected_products"
},
"configurations": {
"@id": "https://www.variotdbs.pl/ref/configurations"
},
"credits": {
"@id": "https://www.variotdbs.pl/ref/credits"
},
"cvss": {
"@id": "https://www.variotdbs.pl/ref/cvss/"
},
"description": {
"@id": "https://www.variotdbs.pl/ref/description/"
},
"exploit_availability": {
"@id": "https://www.variotdbs.pl/ref/exploit_availability/"
},
"external_ids": {
"@id": "https://www.variotdbs.pl/ref/external_ids/"
},
"iot": {
"@id": "https://www.variotdbs.pl/ref/iot/"
},
"iot_taxonomy": {
"@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
},
"patch": {
"@id": "https://www.variotdbs.pl/ref/patch/"
},
"problemtype_data": {
"@id": "https://www.variotdbs.pl/ref/problemtype_data/"
},
"references": {
"@id": "https://www.variotdbs.pl/ref/references/"
},
"sources": {
"@id": "https://www.variotdbs.pl/ref/sources/"
},
"sources_release_date": {
"@id": "https://www.variotdbs.pl/ref/sources_release_date/"
},
"sources_update_date": {
"@id": "https://www.variotdbs.pl/ref/sources_update_date/"
},
"threat_type": {
"@id": "https://www.variotdbs.pl/ref/threat_type/"
},
"title": {
"@id": "https://www.variotdbs.pl/ref/title/"
},
"type": {
"@id": "https://www.variotdbs.pl/ref/type/"
}
},
"@id": "https://www.variotdbs.pl/vuln/VAR-201703-1342",
"affected_products": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/affected_products#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"model": "ruggedcom rox i",
"scope": "lte",
"trust": 1.0,
"vendor": "siemens",
"version": "2.9.0"
},
{
"model": "ruggedcom rox i",
"scope": "eq",
"trust": 0.8,
"vendor": "siemens",
"version": null
},
{
"model": "ruggedcom rox i",
"scope": null,
"trust": 0.6,
"vendor": "siemens",
"version": null
},
{
"model": "ruggedcom rox i",
"scope": "eq",
"trust": 0.6,
"vendor": "siemens",
"version": "2.9.0"
},
{
"model": "ruggedcom rox i",
"scope": "eq",
"trust": 0.3,
"vendor": "siemens",
"version": "0"
},
{
"model": null,
"scope": "eq",
"trust": 0.2,
"vendor": "ruggedcom rox i",
"version": "*"
}
],
"sources": [
{
"db": "IVD",
"id": "86ad737f-9403-4a1a-ab35-f47fd0ebabb7"
},
{
"db": "CNVD",
"id": "CNVD-2017-03649"
},
{
"db": "BID",
"id": "97170"
},
{
"db": "JVNDB",
"id": "JVNDB-2017-002724"
},
{
"db": "CNNVD",
"id": "CNNVD-201703-633"
},
{
"db": "NVD",
"id": "CVE-2017-6864"
}
]
},
"configurations": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/configurations#",
"children": {
"@container": "@list"
},
"cpe_match": {
"@container": "@list"
},
"data": {
"@container": "@list"
},
"nodes": {
"@container": "@list"
}
},
"data": [
{
"CVE_data_version": "4.0",
"nodes": [
{
"cpe_match": [
{
"cpe22Uri": "cpe:/o:siemens:ruggedcom_rox_i",
"vulnerable": true
}
],
"operator": "OR"
}
]
}
],
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2017-002724"
}
]
},
"credits": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/credits#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Maxim Rupp",
"sources": [
{
"db": "BID",
"id": "97170"
}
],
"trust": 0.3
},
"cve": "CVE-2017-6864",
"cvss": {
"@context": {
"cvssV2": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
},
"cvssV3": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
},
"severity": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/cvss/severity#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/severity"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"cvssV2": [
{
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "SINGLE",
"author": "nvd@nist.gov",
"availabilityImpact": "NONE",
"baseScore": 3.5,
"confidentialityImpact": "NONE",
"exploitabilityScore": 6.8,
"id": "CVE-2017-6864",
"impactScore": 2.9,
"integrityImpact": "PARTIAL",
"severity": "LOW",
"trust": 1.8,
"vectorString": "AV:N/AC:M/Au:S/C:N/I:P/A:N",
"version": "2.0"
},
{
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "CNVD",
"availabilityImpact": "NONE",
"baseScore": 6.4,
"confidentialityImpact": "PARTIAL",
"exploitabilityScore": 10.0,
"id": "CNVD-2017-03649",
"impactScore": 4.9,
"integrityImpact": "PARTIAL",
"severity": "MEDIUM",
"trust": 0.6,
"vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:N",
"version": "2.0"
},
{
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "IVD",
"availabilityImpact": "NONE",
"baseScore": 6.4,
"confidentialityImpact": "PARTIAL",
"exploitabilityScore": 10.0,
"id": "86ad737f-9403-4a1a-ab35-f47fd0ebabb7",
"impactScore": 4.9,
"integrityImpact": "PARTIAL",
"severity": "MEDIUM",
"trust": 0.2,
"vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:N",
"version": "2.9 [IVD]"
}
],
"cvssV3": [
{
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"author": "nvd@nist.gov",
"availabilityImpact": "NONE",
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"exploitabilityScore": 2.3,
"id": "CVE-2017-6864",
"impactScore": 2.7,
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"trust": 1.8,
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N",
"version": "3.0"
}
],
"severity": [
{
"author": "nvd@nist.gov",
"id": "CVE-2017-6864",
"trust": 1.0,
"value": "MEDIUM"
},
{
"author": "NVD",
"id": "CVE-2017-6864",
"trust": 0.8,
"value": "Medium"
},
{
"author": "CNVD",
"id": "CNVD-2017-03649",
"trust": 0.6,
"value": "MEDIUM"
},
{
"author": "CNNVD",
"id": "CNNVD-201703-633",
"trust": 0.6,
"value": "LOW"
},
{
"author": "IVD",
"id": "86ad737f-9403-4a1a-ab35-f47fd0ebabb7",
"trust": 0.2,
"value": "LOW"
}
]
}
],
"sources": [
{
"db": "IVD",
"id": "86ad737f-9403-4a1a-ab35-f47fd0ebabb7"
},
{
"db": "CNVD",
"id": "CNVD-2017-03649"
},
{
"db": "JVNDB",
"id": "JVNDB-2017-002724"
},
{
"db": "CNNVD",
"id": "CNNVD-201703-633"
},
{
"db": "NVD",
"id": "CVE-2017-6864"
}
]
},
"description": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/description#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "The integrated web server in Siemens RUGGEDCOM ROX I (all versions) at port 10000/TCP could allow an authenticated user to perform stored Cross-Site Scripting attacks. SiemensRuggedCom\u0027s ROX-based firewall devices are used to connect devices in harsh environments such as substations, traffic management chassis, and more. Siemens RUGGEDCOM ROX I is prone to the following security vulnerabilities: :\n1. A HTML-injection vulnerability\n2. An information-disclosure vulnerability\n4. An authorization-bypass vulnerability\n5. A cross-site request-forgery vulnerability\nAn attacker may leverage these issues to execute HTML and script code in the browser of an unsuspecting user in the context of the affected site, disclose sensitive information, perform certain unauthorized actions actions, gain unauthorized access, or bypass certain security restrictions",
"sources": [
{
"db": "NVD",
"id": "CVE-2017-6864"
},
{
"db": "JVNDB",
"id": "JVNDB-2017-002724"
},
{
"db": "CNVD",
"id": "CNVD-2017-03649"
},
{
"db": "BID",
"id": "97170"
},
{
"db": "IVD",
"id": "86ad737f-9403-4a1a-ab35-f47fd0ebabb7"
}
],
"trust": 2.61
},
"external_ids": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/external_ids#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"db": "NVD",
"id": "CVE-2017-6864",
"trust": 3.5
},
{
"db": "SIEMENS",
"id": "SSA-327980",
"trust": 2.5
},
{
"db": "ICS CERT",
"id": "ICSA-17-087-01",
"trust": 1.3
},
{
"db": "BID",
"id": "97170",
"trust": 1.3
},
{
"db": "SECTRACK",
"id": "1038160",
"trust": 1.0
},
{
"db": "CNVD",
"id": "CNVD-2017-03649",
"trust": 0.8
},
{
"db": "CNNVD",
"id": "CNNVD-201703-633",
"trust": 0.8
},
{
"db": "JVNDB",
"id": "JVNDB-2017-002724",
"trust": 0.8
},
{
"db": "IVD",
"id": "86AD737F-9403-4A1A-AB35-F47FD0EBABB7",
"trust": 0.2
}
],
"sources": [
{
"db": "IVD",
"id": "86ad737f-9403-4a1a-ab35-f47fd0ebabb7"
},
{
"db": "CNVD",
"id": "CNVD-2017-03649"
},
{
"db": "BID",
"id": "97170"
},
{
"db": "JVNDB",
"id": "JVNDB-2017-002724"
},
{
"db": "CNNVD",
"id": "CNNVD-201703-633"
},
{
"db": "NVD",
"id": "CVE-2017-6864"
}
]
},
"id": "VAR-201703-1342",
"iot": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/iot#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": true,
"sources": [
{
"db": "IVD",
"id": "86ad737f-9403-4a1a-ab35-f47fd0ebabb7"
},
{
"db": "CNVD",
"id": "CNVD-2017-03649"
}
],
"trust": 1.32540106
},
"iot_taxonomy": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/iot_taxonomy#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"category": [
"ICS",
"Network device"
],
"sub_category": null,
"trust": 0.6
},
{
"category": [
"ICS"
],
"sub_category": null,
"trust": 0.2
}
],
"sources": [
{
"db": "IVD",
"id": "86ad737f-9403-4a1a-ab35-f47fd0ebabb7"
},
{
"db": "CNVD",
"id": "CNVD-2017-03649"
}
]
},
"last_update_date": "2024-11-23T21:41:38.314000Z",
"patch": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/patch#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"title": "SSA-327980",
"trust": 0.8,
"url": "https://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-327980.pdf"
},
{
"title": "Patch for SiemensRUGGEDCOMROXI Cross-Site Scripting Vulnerability (CNVD-2017-03649)",
"trust": 0.6,
"url": "https://www.cnvd.org.cn/patchInfo/show/91175"
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2017-03649"
},
{
"db": "JVNDB",
"id": "JVNDB-2017-002724"
}
]
},
"problemtype_data": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"problemtype": "CWE-79",
"trust": 1.8
}
],
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2017-002724"
},
{
"db": "NVD",
"id": "CVE-2017-6864"
}
]
},
"references": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/references#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"trust": 2.5,
"url": "https://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-327980.pdf"
},
{
"trust": 1.3,
"url": "https://ics-cert.us-cert.gov/advisories/icsa-17-087-01"
},
{
"trust": 1.0,
"url": "http://www.securityfocus.com/bid/97170"
},
{
"trust": 1.0,
"url": "http://www.securitytracker.com/id/1038160"
},
{
"trust": 0.8,
"url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2017-6864"
},
{
"trust": 0.8,
"url": "https://nvd.nist.gov/vuln/detail/cve-2017-6864"
},
{
"trust": 0.3,
"url": "http://subscriber.communications.siemens.com/"
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2017-03649"
},
{
"db": "BID",
"id": "97170"
},
{
"db": "JVNDB",
"id": "JVNDB-2017-002724"
},
{
"db": "CNNVD",
"id": "CNNVD-201703-633"
},
{
"db": "NVD",
"id": "CVE-2017-6864"
}
]
},
"sources": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#",
"data": {
"@container": "@list"
}
},
"data": [
{
"db": "IVD",
"id": "86ad737f-9403-4a1a-ab35-f47fd0ebabb7"
},
{
"db": "CNVD",
"id": "CNVD-2017-03649"
},
{
"db": "BID",
"id": "97170"
},
{
"db": "JVNDB",
"id": "JVNDB-2017-002724"
},
{
"db": "CNNVD",
"id": "CNNVD-201703-633"
},
{
"db": "NVD",
"id": "CVE-2017-6864"
}
]
},
"sources_release_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2017-03-29T00:00:00",
"db": "IVD",
"id": "86ad737f-9403-4a1a-ab35-f47fd0ebabb7"
},
{
"date": "2017-03-29T00:00:00",
"db": "CNVD",
"id": "CNVD-2017-03649"
},
{
"date": "2017-03-28T00:00:00",
"db": "BID",
"id": "97170"
},
{
"date": "2017-04-26T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2017-002724"
},
{
"date": "2017-03-16T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201703-633"
},
{
"date": "2017-03-29T01:59:02.720000",
"db": "NVD",
"id": "CVE-2017-6864"
}
]
},
"sources_update_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2017-03-29T00:00:00",
"db": "CNVD",
"id": "CNVD-2017-03649"
},
{
"date": "2017-03-28T00:00:00",
"db": "BID",
"id": "97170"
},
{
"date": "2017-04-26T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2017-002724"
},
{
"date": "2017-03-30T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201703-633"
},
{
"date": "2024-11-21T03:30:41.317000",
"db": "NVD",
"id": "CVE-2017-6864"
}
]
},
"threat_type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/threat_type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "remote",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-201703-633"
}
],
"trust": 0.6
},
"title": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/title#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Siemens RUGGEDCOM ROX I Port 10000/TCP Integration Web Server cross-site scripting vulnerability",
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2017-002724"
}
],
"trust": 0.8
},
"type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "XSS",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-201703-633"
}
],
"trust": 0.6
}
}
cnvd-2017-03649
Vulnerability from cnvd
Title
Siemens RUGGEDCOM ROX I跨站脚本漏洞(CNVD-2017-03649)
Description
Siemens RuggedCom基于ROX的防火墙设备用于在恶劣环境中进行设备连接,例如变电站、交通管理机箱等。
Siemens RUGGEDCOM ROX I存在跨站脚本漏洞,攻击者可利用漏洞在10000/TCP端口的Web服务器上进行跨站脚本攻击。
Severity
中
VLAI Severity ?
Patch Name
Siemens RUGGEDCOM ROX I跨站脚本漏洞(CNVD-2017-03649)的补丁
Patch Description
Siemens RuggedCom基于ROX的防火墙设备用于在恶劣环境中进行设备连接,例如变电站、交通管理机箱等。
Siemens RUGGEDCOM ROX I存在跨站脚本漏洞,攻击者可利用漏洞在10000/TCP端口的Web服务器上进行跨站脚本攻击。目前,供应商发布了安全公告及相关补丁信息,修复了此漏洞。
Formal description
目前厂商已经发布了升级补丁以修复此安全问题,补丁获取链接: https://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-327980.pdf
Reference
https://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-327980.pdf
Impacted products
| Name | Siemens RUGGEDCOM ROX I |
|---|
{
"cves": {
"cve": {
"cveNumber": "CVE-2017-6864"
}
},
"description": "Siemens RuggedCom\u57fa\u4e8eROX\u7684\u9632\u706b\u5899\u8bbe\u5907\u7528\u4e8e\u5728\u6076\u52a3\u73af\u5883\u4e2d\u8fdb\u884c\u8bbe\u5907\u8fde\u63a5\uff0c\u4f8b\u5982\u53d8\u7535\u7ad9\u3001\u4ea4\u901a\u7ba1\u7406\u673a\u7bb1\u7b49\u3002\r\n\r\nSiemens RUGGEDCOM ROX I\u5b58\u5728\u8de8\u7ad9\u811a\u672c\u6f0f\u6d1e\uff0c\u653b\u51fb\u8005\u53ef\u5229\u7528\u6f0f\u6d1e\u572810000/TCP\u7aef\u53e3\u7684Web\u670d\u52a1\u5668\u4e0a\u8fdb\u884c\u8de8\u7ad9\u811a\u672c\u653b\u51fb\u3002",
"discovererName": "Siemens",
"formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u7ecf\u53d1\u5e03\u4e86\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u6b64\u5b89\u5168\u95ee\u9898\uff0c\u8865\u4e01\u83b7\u53d6\u94fe\u63a5\uff1a\r\nhttps://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-327980.pdf",
"isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
"number": "CNVD-2017-03649",
"openTime": "2017-03-29",
"patchDescription": "Siemens RuggedCom\u57fa\u4e8eROX\u7684\u9632\u706b\u5899\u8bbe\u5907\u7528\u4e8e\u5728\u6076\u52a3\u73af\u5883\u4e2d\u8fdb\u884c\u8bbe\u5907\u8fde\u63a5\uff0c\u4f8b\u5982\u53d8\u7535\u7ad9\u3001\u4ea4\u901a\u7ba1\u7406\u673a\u7bb1\u7b49\u3002\r\n\r\nSiemens RUGGEDCOM ROX I\u5b58\u5728\u8de8\u7ad9\u811a\u672c\u6f0f\u6d1e\uff0c\u653b\u51fb\u8005\u53ef\u5229\u7528\u6f0f\u6d1e\u572810000/TCP\u7aef\u53e3\u7684Web\u670d\u52a1\u5668\u4e0a\u8fdb\u884c\u8de8\u7ad9\u811a\u672c\u653b\u51fb\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
"patchName": "Siemens RUGGEDCOM ROX I\u8de8\u7ad9\u811a\u672c\u6f0f\u6d1e\uff08CNVD-2017-03649\uff09\u7684\u8865\u4e01",
"products": {
"product": "Siemens RUGGEDCOM ROX I"
},
"referenceLink": "https://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-327980.pdf",
"serverity": "\u4e2d",
"submitTime": "2017-03-29",
"title": "Siemens RUGGEDCOM ROX I\u8de8\u7ad9\u811a\u672c\u6f0f\u6d1e\uff08CNVD-2017-03649\uff09"
}
gsd-2017-6864
Vulnerability from gsd
Modified
2023-12-13 01:21
Details
The integrated web server in Siemens RUGGEDCOM ROX I (all versions) at port 10000/TCP could allow an authenticated user to perform stored Cross-Site Scripting attacks.
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2017-6864",
"description": "The integrated web server in Siemens RUGGEDCOM ROX I (all versions) at port 10000/TCP could allow an authenticated user to perform stored Cross-Site Scripting attacks.",
"id": "GSD-2017-6864"
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2017-6864"
],
"details": "The integrated web server in Siemens RUGGEDCOM ROX I (all versions) at port 10000/TCP could allow an authenticated user to perform stored Cross-Site Scripting attacks.",
"id": "GSD-2017-6864",
"modified": "2023-12-13T01:21:09.404624Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "productcert@siemens.com",
"ID": "CVE-2017-6864",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "RUGGEDCOM ROX I All versions",
"version": {
"version_data": [
{
"version_value": "RUGGEDCOM ROX I All versions"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "The integrated web server in Siemens RUGGEDCOM ROX I (all versions) at port 10000/TCP could allow an authenticated user to perform stored Cross-Site Scripting attacks."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-79: Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "97170",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/97170"
},
{
"name": "https://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-327980.pdf",
"refsource": "CONFIRM",
"url": "https://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-327980.pdf"
},
{
"name": "1038160",
"refsource": "SECTRACK",
"url": "http://www.securitytracker.com/id/1038160"
},
{
"name": "https://ics-cert.us-cert.gov/advisories/ICSA-17-087-01",
"refsource": "MISC",
"url": "https://ics-cert.us-cert.gov/advisories/ICSA-17-087-01"
}
]
}
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:siemens:ruggedcom_rox_i:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "2.9.0",
"vulnerable": true
}
],
"operator": "OR"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "productcert@siemens.com",
"ID": "CVE-2017-6864"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "The integrated web server in Siemens RUGGEDCOM ROX I (all versions) at port 10000/TCP could allow an authenticated user to perform stored Cross-Site Scripting attacks."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "CWE-79"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-327980.pdf",
"refsource": "CONFIRM",
"tags": [
"Vendor Advisory"
],
"url": "https://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-327980.pdf"
},
{
"name": "97170",
"refsource": "BID",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securityfocus.com/bid/97170"
},
{
"name": "https://ics-cert.us-cert.gov/advisories/ICSA-17-087-01",
"refsource": "MISC",
"tags": [],
"url": "https://ics-cert.us-cert.gov/advisories/ICSA-17-087-01"
},
{
"name": "1038160",
"refsource": "SECTRACK",
"tags": [],
"url": "http://www.securitytracker.com/id/1038160"
}
]
}
},
"impact": {
"baseMetricV2": {
"cvssV2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "SINGLE",
"availabilityImpact": "NONE",
"baseScore": 3.5,
"confidentialityImpact": "NONE",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:S/C:N/I:P/A:N",
"version": "2.0"
},
"exploitabilityScore": 6.8,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "LOW",
"userInteractionRequired": false
},
"baseMetricV3": {
"cvssV3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N",
"version": "3.0"
},
"exploitabilityScore": 2.3,
"impactScore": 2.7
}
},
"lastModifiedDate": "2017-07-12T01:29Z",
"publishedDate": "2017-03-29T01:59Z"
}
}
}
ghsa-4w4m-6hr4-p8r5
Vulnerability from github
Published
2022-05-17 02:30
Modified
2022-05-17 02:30
Severity ?
VLAI Severity ?
Details
The integrated web server in Siemens RUGGEDCOM ROX I (all versions) at port 10000/TCP could allow an authenticated user to perform stored Cross-Site Scripting attacks.
{
"affected": [],
"aliases": [
"CVE-2017-6864"
],
"database_specific": {
"cwe_ids": [
"CWE-79"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2017-03-29T01:59:00Z",
"severity": "MODERATE"
},
"details": "The integrated web server in Siemens RUGGEDCOM ROX I (all versions) at port 10000/TCP could allow an authenticated user to perform stored Cross-Site Scripting attacks.",
"id": "GHSA-4w4m-6hr4-p8r5",
"modified": "2022-05-17T02:30:08Z",
"published": "2022-05-17T02:30:08Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-6864"
},
{
"type": "WEB",
"url": "https://ics-cert.us-cert.gov/advisories/ICSA-17-087-01"
},
{
"type": "WEB",
"url": "https://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-327980.pdf"
},
{
"type": "WEB",
"url": "http://www.securityfocus.com/bid/97170"
},
{
"type": "WEB",
"url": "http://www.securitytracker.com/id/1038160"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N",
"type": "CVSS_V3"
}
]
}
ICSA-17-087-01
Vulnerability from csaf_cisa
Published
2017-03-28 00:00
Modified
2017-03-28 00:00
Summary
Siemens RUGGEDCOM ROX I
Notes
CISA Disclaimer
This CSAF advisory was extracted from unstructured data and may contain inaccuracies. If you notice any errors, please reach out to the designated contact at CISA CSAF: central@cisa.dhs.gov
Legal Notice
All information products included in https://us-cert.cisa.gov/ics are provided "as is" for informational purposes only. The Department of Homeland Security (DHS) does not provide any warranties of any kind regarding any information contained within. DHS does not endorse any commercial product or service, referenced in this product or otherwise. Further dissemination of this product is governed by the Traffic Light Protocol (TLP) marking in the header. For more information about TLP, see https://us-cert.cisa.gov/tlp/.
Risk evaluation
ATTENTION: Remotely exploitable/low skill level to exploit.
Critical infrastructure sectors
Energy, Healthcare, and Transportation
Countries/areas deployed
Worldwide
Company headquarters location
Germany
Recommended Practices
NCCIC/ICS-CERT recommends that users take defensive measures to minimize the risk of exploitation of these vulnerabilities. Specifically, users should:
Recommended Practices
ICS-CERT reminds organizations to perform proper impact analysis and risk assessment prior to deploying defensive measures.
Recommended Practices
ICS-CERT also provides a section for control systems security recommended practices on the ICS-CERT web page. Several recommended practices are available for reading and download, including Improving Industrial Control Systems Cybersecurity with Defense-in-Depth Strategies.
Recommended Practices
Additional mitigation guidance and recommended practices are publicly available in the ICS -CERT Technical Information Paper, ICS-TIP-12-146-01B--Targeted Cyber Intrusion Detection and Mitigation Strategies, that is available for download from the ICS-CERT web site.
Recommended Practices
Organizations observing any suspected malicious activity should follow their established internal procedures and report their findings to ICS-CERT for tracking and correlation against other incidents.
Exploitability
No known public exploits specifically target these vulnerabilities.
{
"document": {
"acknowledgments": [
{
"names": [
"Maxim Rupp"
],
"summary": "reporting these vulnerabilities directly to Siemens"
}
],
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Disclosure is not limited",
"tlp": {
"label": "WHITE",
"url": "https://us-cert.cisa.gov/tlp/"
}
},
"lang": "en-US",
"notes": [
{
"category": "general",
"text": "This CSAF advisory was extracted from unstructured data and may contain inaccuracies. If you notice any errors, please reach out to the designated contact at CISA CSAF: central@cisa.dhs.gov",
"title": "CISA Disclaimer"
},
{
"category": "legal_disclaimer",
"text": "All information products included in https://us-cert.cisa.gov/ics are provided \"as is\" for informational purposes only. The Department of Homeland Security (DHS) does not provide any warranties of any kind regarding any information contained within. DHS does not endorse any commercial product or service, referenced in this product or otherwise. Further dissemination of this product is governed by the Traffic Light Protocol (TLP) marking in the header. For more information about TLP, see https://us-cert.cisa.gov/tlp/.",
"title": "Legal Notice"
},
{
"category": "summary",
"text": "ATTENTION: Remotely exploitable/low skill level to exploit.",
"title": "Risk evaluation"
},
{
"category": "other",
"text": "Energy, Healthcare, and Transportation",
"title": "Critical infrastructure sectors"
},
{
"category": "other",
"text": "Worldwide",
"title": "Countries/areas deployed"
},
{
"category": "other",
"text": "Germany",
"title": "Company headquarters location"
},
{
"category": "general",
"text": "NCCIC/ICS-CERT recommends that users take defensive measures to minimize the risk of exploitation of these vulnerabilities. Specifically, users should:",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "ICS-CERT reminds organizations to perform proper impact analysis and risk assessment prior to deploying defensive measures.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "ICS-CERT also provides a section for control systems security recommended practices on the ICS-CERT web page. Several recommended practices are available for reading and download, including Improving Industrial Control Systems Cybersecurity with Defense-in-Depth Strategies.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "Additional mitigation guidance and recommended practices are publicly available in the ICS -CERT Technical Information Paper, ICS-TIP-12-146-01B--Targeted Cyber Intrusion Detection and Mitigation Strategies, that is available for download from the ICS-CERT web site.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "Organizations observing any suspected malicious activity should follow their established internal procedures and report their findings to ICS-CERT for tracking and correlation against other incidents.",
"title": "Recommended Practices"
},
{
"category": "other",
"text": "No known public exploits specifically target these vulnerabilities.",
"title": "Exploitability"
}
],
"publisher": {
"category": "coordinator",
"contact_details": "Email: CISAservicedesk@cisa.dhs.gov;\n Toll Free: 1-888-282-0870",
"name": "CISA",
"namespace": "https://www.cisa.gov/"
},
"references": [
{
"category": "self",
"summary": "ICS Advisory ICSA-17-087-01 JSON",
"url": "https://raw.githubusercontent.com/cisagov/CSAF/develop/csaf_files/OT/white/2017/icsa-17-087-01.json"
},
{
"category": "self",
"summary": "ICS Advisory ICSA-17-087-01 Web Version",
"url": "https://www.cisa.gov/news-events/ics-advisories/icsa-17-087-01"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://www.cisa.gov/news-events/ics-advisories/icsa-17-087-01"
}
],
"title": "Siemens RUGGEDCOM ROX I",
"tracking": {
"current_release_date": "2017-03-28T00:00:00.000000Z",
"generator": {
"engine": {
"name": "CISA CSAF Generator",
"version": "1.0.0"
}
},
"id": "ICSA-17-087-01",
"initial_release_date": "2017-03-28T00:00:00.000000Z",
"revision_history": [
{
"date": "2017-03-28T00:00:00.000000Z",
"legacy_version": "Initial",
"number": "1",
"summary": "ICSA-17-087-01 Siemens RUGGEDCOM ROX I"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "vers:all/*",
"product": {
"name": "RUGGEDCOM ROX I: All versions",
"product_id": "CSAFPID-0001"
}
}
],
"category": "product_name",
"name": "RUGGEDCOM ROX I"
}
],
"category": "vendor",
"name": "Siemens"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2017-2686",
"cwe": {
"id": "CWE-285",
"name": "Improper Authorization"
},
"notes": [
{
"category": "summary",
"text": "An authenticated user could read arbitrary files through the web interface at Port 10000/TCP and access sensitive information.CVE-2017-2686 has been assigned to this vulnerability. A CVSS v3 base score of 6.5 has been calculated; the CVSS vector string is (AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N).",
"title": "Vulnerability Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"category": "external",
"summary": "web.nvd.nist.gov",
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-2686"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Siemens recommends the following mitigations:",
"product_ids": [
"CSAFPID-0001"
]
},
{
"category": "vendor_fix",
"details": "https://support.industry.siemens.com/cs/ww/en/view/109746106",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109746106"
},
{
"category": "vendor_fix",
"details": "The mitigation tool for the affected ROX I-based products can be obtained from Siemens by doing one of the following:",
"product_ids": [
"CSAFPID-0001"
]
},
{
"category": "vendor_fix",
"details": "https://www.siemens.com/automation/support-request",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://www.siemens.com/automation/support-request"
},
{
"category": "vendor_fix",
"details": "https://w3.siemens.com/aspa_app/",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://w3.siemens.com/aspa_app/"
},
{
"category": "vendor_fix",
"details": "As a general security measure Siemens strongly recommends protecting network access to the web interface at Port 10000/TCP of ROX I-based devices with appropriate mechanisms and configuring the environment according to Siemens \u0027 operational guidelines in order to run the devices in a protected IT environment:",
"product_ids": [
"CSAFPID-0001"
]
},
{
"category": "vendor_fix",
"details": "https://www.siemens.com/cert/operational-guidelines-industrial-security",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://www.siemens.com/cert/operational-guidelines-industrial-security"
},
{
"category": "vendor_fix",
"details": "For more information on these vulnerabilities and detailed instructions, please see Siemens Security Advisory SSA-327980 at the following location:",
"product_ids": [
"CSAFPID-0001"
]
},
{
"category": "vendor_fix",
"details": "http://www.siemens.com/cert/advisories/",
"product_ids": [
"CSAFPID-0001"
],
"url": "http://www.siemens.com/cert/advisories/"
},
{
"category": "vendor_fix",
"details": "In addition, ICS-CERT recommends that users take the following measures to protect themselves from social engineering attacks:",
"product_ids": [
"CSAFPID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"CSAFPID-0001"
]
}
]
},
{
"cve": "CVE-2017-2687",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"notes": [
{
"category": "summary",
"text": "The integrated web server at Port 10000/TCP is prone to reflected Cross-Site Scripting attacks if an unsuspecting user is induced to click on a malicious link.CVE-2017-2687 has been assigned to this vulnerability. A CVSS v3 base score of 6.1 has been calculated; the CVSS vector string is (AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N).",
"title": "Vulnerability Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"category": "external",
"summary": "web.nvd.nist.gov",
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-2687"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Siemens recommends the following mitigations:",
"product_ids": [
"CSAFPID-0001"
]
},
{
"category": "vendor_fix",
"details": "https://support.industry.siemens.com/cs/ww/en/view/109746106",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109746106"
},
{
"category": "vendor_fix",
"details": "The mitigation tool for the affected ROX I-based products can be obtained from Siemens by doing one of the following:",
"product_ids": [
"CSAFPID-0001"
]
},
{
"category": "vendor_fix",
"details": "https://www.siemens.com/automation/support-request",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://www.siemens.com/automation/support-request"
},
{
"category": "vendor_fix",
"details": "https://w3.siemens.com/aspa_app/",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://w3.siemens.com/aspa_app/"
},
{
"category": "vendor_fix",
"details": "As a general security measure Siemens strongly recommends protecting network access to the web interface at Port 10000/TCP of ROX I-based devices with appropriate mechanisms and configuring the environment according to Siemens \u0027 operational guidelines in order to run the devices in a protected IT environment:",
"product_ids": [
"CSAFPID-0001"
]
},
{
"category": "vendor_fix",
"details": "https://www.siemens.com/cert/operational-guidelines-industrial-security",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://www.siemens.com/cert/operational-guidelines-industrial-security"
},
{
"category": "vendor_fix",
"details": "For more information on these vulnerabilities and detailed instructions, please see Siemens Security Advisory SSA-327980 at the following location:",
"product_ids": [
"CSAFPID-0001"
]
},
{
"category": "vendor_fix",
"details": "http://www.siemens.com/cert/advisories/",
"product_ids": [
"CSAFPID-0001"
],
"url": "http://www.siemens.com/cert/advisories/"
},
{
"category": "vendor_fix",
"details": "In addition, ICS-CERT recommends that users take the following measures to protect themselves from social engineering attacks:",
"product_ids": [
"CSAFPID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.0"
},
"products": [
"CSAFPID-0001"
]
}
]
},
{
"cve": "CVE-2017-2688",
"cwe": {
"id": "CWE-352",
"name": "Cross-Site Request Forgery (CSRF)"
},
"notes": [
{
"category": "summary",
"text": "The integrated web server at Port 10000/TCP could allow remote attackers to perform actions with the privileges of an authenticated user, provided the targeted user has an active session and is induced to click on a malicious link or visits a malicious web site.CVE-2017-2688 has been assigned to this vulnerability. A CVSS v3 base score of 7.6 has been calculated; the CVSS vector string is (AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:L).",
"title": "Vulnerability Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"category": "external",
"summary": "web.nvd.nist.gov",
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-2688"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:L"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Siemens recommends the following mitigations:",
"product_ids": [
"CSAFPID-0001"
]
},
{
"category": "vendor_fix",
"details": "https://support.industry.siemens.com/cs/ww/en/view/109746106",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109746106"
},
{
"category": "vendor_fix",
"details": "The mitigation tool for the affected ROX I-based products can be obtained from Siemens by doing one of the following:",
"product_ids": [
"CSAFPID-0001"
]
},
{
"category": "vendor_fix",
"details": "https://www.siemens.com/automation/support-request",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://www.siemens.com/automation/support-request"
},
{
"category": "vendor_fix",
"details": "https://w3.siemens.com/aspa_app/",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://w3.siemens.com/aspa_app/"
},
{
"category": "vendor_fix",
"details": "As a general security measure Siemens strongly recommends protecting network access to the web interface at Port 10000/TCP of ROX I-based devices with appropriate mechanisms and configuring the environment according to Siemens \u0027 operational guidelines in order to run the devices in a protected IT environment:",
"product_ids": [
"CSAFPID-0001"
]
},
{
"category": "vendor_fix",
"details": "https://www.siemens.com/cert/operational-guidelines-industrial-security",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://www.siemens.com/cert/operational-guidelines-industrial-security"
},
{
"category": "vendor_fix",
"details": "For more information on these vulnerabilities and detailed instructions, please see Siemens Security Advisory SSA-327980 at the following location:",
"product_ids": [
"CSAFPID-0001"
]
},
{
"category": "vendor_fix",
"details": "http://www.siemens.com/cert/advisories/",
"product_ids": [
"CSAFPID-0001"
],
"url": "http://www.siemens.com/cert/advisories/"
},
{
"category": "vendor_fix",
"details": "In addition, ICS-CERT recommends that users take the following measures to protect themselves from social engineering attacks:",
"product_ids": [
"CSAFPID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.6,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:L",
"version": "3.0"
},
"products": [
"CSAFPID-0001"
]
}
]
},
{
"cve": "CVE-2017-2689",
"cwe": {
"id": "CWE-285",
"name": "Improper Authorization"
},
"notes": [
{
"category": "summary",
"text": "An authenticated user could bypass access restrictions in the web interface at Port 10000/TCP to obtain privileged file system access or change configuration settings.CVE-2017-2689 has been assigned to this vulnerability. A CVSS v3 base score of 8.8 has been calculated; the CVSS vector string is (AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H).",
"title": "Vulnerability Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"category": "external",
"summary": "web.nvd.nist.gov",
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-2689"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Siemens recommends the following mitigations:",
"product_ids": [
"CSAFPID-0001"
]
},
{
"category": "vendor_fix",
"details": "https://support.industry.siemens.com/cs/ww/en/view/109746106",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109746106"
},
{
"category": "vendor_fix",
"details": "The mitigation tool for the affected ROX I-based products can be obtained from Siemens by doing one of the following:",
"product_ids": [
"CSAFPID-0001"
]
},
{
"category": "vendor_fix",
"details": "https://www.siemens.com/automation/support-request",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://www.siemens.com/automation/support-request"
},
{
"category": "vendor_fix",
"details": "https://w3.siemens.com/aspa_app/",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://w3.siemens.com/aspa_app/"
},
{
"category": "vendor_fix",
"details": "As a general security measure Siemens strongly recommends protecting network access to the web interface at Port 10000/TCP of ROX I-based devices with appropriate mechanisms and configuring the environment according to Siemens \u0027 operational guidelines in order to run the devices in a protected IT environment:",
"product_ids": [
"CSAFPID-0001"
]
},
{
"category": "vendor_fix",
"details": "https://www.siemens.com/cert/operational-guidelines-industrial-security",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://www.siemens.com/cert/operational-guidelines-industrial-security"
},
{
"category": "vendor_fix",
"details": "For more information on these vulnerabilities and detailed instructions, please see Siemens Security Advisory SSA-327980 at the following location:",
"product_ids": [
"CSAFPID-0001"
]
},
{
"category": "vendor_fix",
"details": "http://www.siemens.com/cert/advisories/",
"product_ids": [
"CSAFPID-0001"
],
"url": "http://www.siemens.com/cert/advisories/"
},
{
"category": "vendor_fix",
"details": "In addition, ICS-CERT recommends that users take the following measures to protect themselves from social engineering attacks:",
"product_ids": [
"CSAFPID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-0001"
]
}
]
},
{
"cve": "CVE-2017-6864",
"cwe": {
"id": "CWE-80",
"name": "Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS)"
},
"notes": [
{
"category": "summary",
"text": "The integrated web server at Port 10000/TCP could allow an authenticated user to perform stored Cross-Site Scripting attacks.CVE-2017-6864 has been assigned to this vulnerability. A CVSS v3 base score of 6.4 has been calculated; the CVSS vector string is (AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N).",
"title": "Vulnerability Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"category": "external",
"summary": "web.nvd.nist.gov",
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-6864"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Siemens recommends the following mitigations:",
"product_ids": [
"CSAFPID-0001"
]
},
{
"category": "vendor_fix",
"details": "https://support.industry.siemens.com/cs/ww/en/view/109746106",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109746106"
},
{
"category": "vendor_fix",
"details": "The mitigation tool for the affected ROX I-based products can be obtained from Siemens by doing one of the following:",
"product_ids": [
"CSAFPID-0001"
]
},
{
"category": "vendor_fix",
"details": "https://www.siemens.com/automation/support-request",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://www.siemens.com/automation/support-request"
},
{
"category": "vendor_fix",
"details": "https://w3.siemens.com/aspa_app/",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://w3.siemens.com/aspa_app/"
},
{
"category": "vendor_fix",
"details": "As a general security measure Siemens strongly recommends protecting network access to the web interface at Port 10000/TCP of ROX I-based devices with appropriate mechanisms and configuring the environment according to Siemens \u0027 operational guidelines in order to run the devices in a protected IT environment:",
"product_ids": [
"CSAFPID-0001"
]
},
{
"category": "vendor_fix",
"details": "https://www.siemens.com/cert/operational-guidelines-industrial-security",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://www.siemens.com/cert/operational-guidelines-industrial-security"
},
{
"category": "vendor_fix",
"details": "For more information on these vulnerabilities and detailed instructions, please see Siemens Security Advisory SSA-327980 at the following location:",
"product_ids": [
"CSAFPID-0001"
]
},
{
"category": "vendor_fix",
"details": "http://www.siemens.com/cert/advisories/",
"product_ids": [
"CSAFPID-0001"
],
"url": "http://www.siemens.com/cert/advisories/"
},
{
"category": "vendor_fix",
"details": "In addition, ICS-CERT recommends that users take the following measures to protect themselves from social engineering attacks:",
"product_ids": [
"CSAFPID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N",
"version": "3.0"
},
"products": [
"CSAFPID-0001"
]
}
]
}
]
}
icsa-17-087-01
Vulnerability from csaf_cisa
Published
2017-03-28 00:00
Modified
2017-03-28 00:00
Summary
Siemens RUGGEDCOM ROX I
Notes
CISA Disclaimer
This CSAF advisory was extracted from unstructured data and may contain inaccuracies. If you notice any errors, please reach out to the designated contact at CISA CSAF: central@cisa.dhs.gov
Legal Notice
All information products included in https://us-cert.cisa.gov/ics are provided "as is" for informational purposes only. The Department of Homeland Security (DHS) does not provide any warranties of any kind regarding any information contained within. DHS does not endorse any commercial product or service, referenced in this product or otherwise. Further dissemination of this product is governed by the Traffic Light Protocol (TLP) marking in the header. For more information about TLP, see https://us-cert.cisa.gov/tlp/.
Risk evaluation
ATTENTION: Remotely exploitable/low skill level to exploit.
Critical infrastructure sectors
Energy, Healthcare, and Transportation
Countries/areas deployed
Worldwide
Company headquarters location
Germany
Recommended Practices
NCCIC/ICS-CERT recommends that users take defensive measures to minimize the risk of exploitation of these vulnerabilities. Specifically, users should:
Recommended Practices
ICS-CERT reminds organizations to perform proper impact analysis and risk assessment prior to deploying defensive measures.
Recommended Practices
ICS-CERT also provides a section for control systems security recommended practices on the ICS-CERT web page. Several recommended practices are available for reading and download, including Improving Industrial Control Systems Cybersecurity with Defense-in-Depth Strategies.
Recommended Practices
Additional mitigation guidance and recommended practices are publicly available in the ICS -CERT Technical Information Paper, ICS-TIP-12-146-01B--Targeted Cyber Intrusion Detection and Mitigation Strategies, that is available for download from the ICS-CERT web site.
Recommended Practices
Organizations observing any suspected malicious activity should follow their established internal procedures and report their findings to ICS-CERT for tracking and correlation against other incidents.
Exploitability
No known public exploits specifically target these vulnerabilities.
{
"document": {
"acknowledgments": [
{
"names": [
"Maxim Rupp"
],
"summary": "reporting these vulnerabilities directly to Siemens"
}
],
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Disclosure is not limited",
"tlp": {
"label": "WHITE",
"url": "https://us-cert.cisa.gov/tlp/"
}
},
"lang": "en-US",
"notes": [
{
"category": "general",
"text": "This CSAF advisory was extracted from unstructured data and may contain inaccuracies. If you notice any errors, please reach out to the designated contact at CISA CSAF: central@cisa.dhs.gov",
"title": "CISA Disclaimer"
},
{
"category": "legal_disclaimer",
"text": "All information products included in https://us-cert.cisa.gov/ics are provided \"as is\" for informational purposes only. The Department of Homeland Security (DHS) does not provide any warranties of any kind regarding any information contained within. DHS does not endorse any commercial product or service, referenced in this product or otherwise. Further dissemination of this product is governed by the Traffic Light Protocol (TLP) marking in the header. For more information about TLP, see https://us-cert.cisa.gov/tlp/.",
"title": "Legal Notice"
},
{
"category": "summary",
"text": "ATTENTION: Remotely exploitable/low skill level to exploit.",
"title": "Risk evaluation"
},
{
"category": "other",
"text": "Energy, Healthcare, and Transportation",
"title": "Critical infrastructure sectors"
},
{
"category": "other",
"text": "Worldwide",
"title": "Countries/areas deployed"
},
{
"category": "other",
"text": "Germany",
"title": "Company headquarters location"
},
{
"category": "general",
"text": "NCCIC/ICS-CERT recommends that users take defensive measures to minimize the risk of exploitation of these vulnerabilities. Specifically, users should:",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "ICS-CERT reminds organizations to perform proper impact analysis and risk assessment prior to deploying defensive measures.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "ICS-CERT also provides a section for control systems security recommended practices on the ICS-CERT web page. Several recommended practices are available for reading and download, including Improving Industrial Control Systems Cybersecurity with Defense-in-Depth Strategies.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "Additional mitigation guidance and recommended practices are publicly available in the ICS -CERT Technical Information Paper, ICS-TIP-12-146-01B--Targeted Cyber Intrusion Detection and Mitigation Strategies, that is available for download from the ICS-CERT web site.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "Organizations observing any suspected malicious activity should follow their established internal procedures and report their findings to ICS-CERT for tracking and correlation against other incidents.",
"title": "Recommended Practices"
},
{
"category": "other",
"text": "No known public exploits specifically target these vulnerabilities.",
"title": "Exploitability"
}
],
"publisher": {
"category": "coordinator",
"contact_details": "Email: CISAservicedesk@cisa.dhs.gov;\n Toll Free: 1-888-282-0870",
"name": "CISA",
"namespace": "https://www.cisa.gov/"
},
"references": [
{
"category": "self",
"summary": "ICS Advisory ICSA-17-087-01 JSON",
"url": "https://raw.githubusercontent.com/cisagov/CSAF/develop/csaf_files/OT/white/2017/icsa-17-087-01.json"
},
{
"category": "self",
"summary": "ICS Advisory ICSA-17-087-01 Web Version",
"url": "https://www.cisa.gov/news-events/ics-advisories/icsa-17-087-01"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://www.cisa.gov/news-events/ics-advisories/icsa-17-087-01"
}
],
"title": "Siemens RUGGEDCOM ROX I",
"tracking": {
"current_release_date": "2017-03-28T00:00:00.000000Z",
"generator": {
"engine": {
"name": "CISA CSAF Generator",
"version": "1.0.0"
}
},
"id": "ICSA-17-087-01",
"initial_release_date": "2017-03-28T00:00:00.000000Z",
"revision_history": [
{
"date": "2017-03-28T00:00:00.000000Z",
"legacy_version": "Initial",
"number": "1",
"summary": "ICSA-17-087-01 Siemens RUGGEDCOM ROX I"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "vers:all/*",
"product": {
"name": "RUGGEDCOM ROX I: All versions",
"product_id": "CSAFPID-0001"
}
}
],
"category": "product_name",
"name": "RUGGEDCOM ROX I"
}
],
"category": "vendor",
"name": "Siemens"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2017-2686",
"cwe": {
"id": "CWE-285",
"name": "Improper Authorization"
},
"notes": [
{
"category": "summary",
"text": "An authenticated user could read arbitrary files through the web interface at Port 10000/TCP and access sensitive information.CVE-2017-2686 has been assigned to this vulnerability. A CVSS v3 base score of 6.5 has been calculated; the CVSS vector string is (AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N).",
"title": "Vulnerability Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"category": "external",
"summary": "web.nvd.nist.gov",
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-2686"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Siemens recommends the following mitigations:",
"product_ids": [
"CSAFPID-0001"
]
},
{
"category": "vendor_fix",
"details": "https://support.industry.siemens.com/cs/ww/en/view/109746106",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109746106"
},
{
"category": "vendor_fix",
"details": "The mitigation tool for the affected ROX I-based products can be obtained from Siemens by doing one of the following:",
"product_ids": [
"CSAFPID-0001"
]
},
{
"category": "vendor_fix",
"details": "https://www.siemens.com/automation/support-request",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://www.siemens.com/automation/support-request"
},
{
"category": "vendor_fix",
"details": "https://w3.siemens.com/aspa_app/",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://w3.siemens.com/aspa_app/"
},
{
"category": "vendor_fix",
"details": "As a general security measure Siemens strongly recommends protecting network access to the web interface at Port 10000/TCP of ROX I-based devices with appropriate mechanisms and configuring the environment according to Siemens \u0027 operational guidelines in order to run the devices in a protected IT environment:",
"product_ids": [
"CSAFPID-0001"
]
},
{
"category": "vendor_fix",
"details": "https://www.siemens.com/cert/operational-guidelines-industrial-security",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://www.siemens.com/cert/operational-guidelines-industrial-security"
},
{
"category": "vendor_fix",
"details": "For more information on these vulnerabilities and detailed instructions, please see Siemens Security Advisory SSA-327980 at the following location:",
"product_ids": [
"CSAFPID-0001"
]
},
{
"category": "vendor_fix",
"details": "http://www.siemens.com/cert/advisories/",
"product_ids": [
"CSAFPID-0001"
],
"url": "http://www.siemens.com/cert/advisories/"
},
{
"category": "vendor_fix",
"details": "In addition, ICS-CERT recommends that users take the following measures to protect themselves from social engineering attacks:",
"product_ids": [
"CSAFPID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"CSAFPID-0001"
]
}
]
},
{
"cve": "CVE-2017-2687",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"notes": [
{
"category": "summary",
"text": "The integrated web server at Port 10000/TCP is prone to reflected Cross-Site Scripting attacks if an unsuspecting user is induced to click on a malicious link.CVE-2017-2687 has been assigned to this vulnerability. A CVSS v3 base score of 6.1 has been calculated; the CVSS vector string is (AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N).",
"title": "Vulnerability Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"category": "external",
"summary": "web.nvd.nist.gov",
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-2687"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Siemens recommends the following mitigations:",
"product_ids": [
"CSAFPID-0001"
]
},
{
"category": "vendor_fix",
"details": "https://support.industry.siemens.com/cs/ww/en/view/109746106",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109746106"
},
{
"category": "vendor_fix",
"details": "The mitigation tool for the affected ROX I-based products can be obtained from Siemens by doing one of the following:",
"product_ids": [
"CSAFPID-0001"
]
},
{
"category": "vendor_fix",
"details": "https://www.siemens.com/automation/support-request",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://www.siemens.com/automation/support-request"
},
{
"category": "vendor_fix",
"details": "https://w3.siemens.com/aspa_app/",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://w3.siemens.com/aspa_app/"
},
{
"category": "vendor_fix",
"details": "As a general security measure Siemens strongly recommends protecting network access to the web interface at Port 10000/TCP of ROX I-based devices with appropriate mechanisms and configuring the environment according to Siemens \u0027 operational guidelines in order to run the devices in a protected IT environment:",
"product_ids": [
"CSAFPID-0001"
]
},
{
"category": "vendor_fix",
"details": "https://www.siemens.com/cert/operational-guidelines-industrial-security",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://www.siemens.com/cert/operational-guidelines-industrial-security"
},
{
"category": "vendor_fix",
"details": "For more information on these vulnerabilities and detailed instructions, please see Siemens Security Advisory SSA-327980 at the following location:",
"product_ids": [
"CSAFPID-0001"
]
},
{
"category": "vendor_fix",
"details": "http://www.siemens.com/cert/advisories/",
"product_ids": [
"CSAFPID-0001"
],
"url": "http://www.siemens.com/cert/advisories/"
},
{
"category": "vendor_fix",
"details": "In addition, ICS-CERT recommends that users take the following measures to protect themselves from social engineering attacks:",
"product_ids": [
"CSAFPID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.0"
},
"products": [
"CSAFPID-0001"
]
}
]
},
{
"cve": "CVE-2017-2688",
"cwe": {
"id": "CWE-352",
"name": "Cross-Site Request Forgery (CSRF)"
},
"notes": [
{
"category": "summary",
"text": "The integrated web server at Port 10000/TCP could allow remote attackers to perform actions with the privileges of an authenticated user, provided the targeted user has an active session and is induced to click on a malicious link or visits a malicious web site.CVE-2017-2688 has been assigned to this vulnerability. A CVSS v3 base score of 7.6 has been calculated; the CVSS vector string is (AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:L).",
"title": "Vulnerability Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"category": "external",
"summary": "web.nvd.nist.gov",
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-2688"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:L"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Siemens recommends the following mitigations:",
"product_ids": [
"CSAFPID-0001"
]
},
{
"category": "vendor_fix",
"details": "https://support.industry.siemens.com/cs/ww/en/view/109746106",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109746106"
},
{
"category": "vendor_fix",
"details": "The mitigation tool for the affected ROX I-based products can be obtained from Siemens by doing one of the following:",
"product_ids": [
"CSAFPID-0001"
]
},
{
"category": "vendor_fix",
"details": "https://www.siemens.com/automation/support-request",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://www.siemens.com/automation/support-request"
},
{
"category": "vendor_fix",
"details": "https://w3.siemens.com/aspa_app/",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://w3.siemens.com/aspa_app/"
},
{
"category": "vendor_fix",
"details": "As a general security measure Siemens strongly recommends protecting network access to the web interface at Port 10000/TCP of ROX I-based devices with appropriate mechanisms and configuring the environment according to Siemens \u0027 operational guidelines in order to run the devices in a protected IT environment:",
"product_ids": [
"CSAFPID-0001"
]
},
{
"category": "vendor_fix",
"details": "https://www.siemens.com/cert/operational-guidelines-industrial-security",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://www.siemens.com/cert/operational-guidelines-industrial-security"
},
{
"category": "vendor_fix",
"details": "For more information on these vulnerabilities and detailed instructions, please see Siemens Security Advisory SSA-327980 at the following location:",
"product_ids": [
"CSAFPID-0001"
]
},
{
"category": "vendor_fix",
"details": "http://www.siemens.com/cert/advisories/",
"product_ids": [
"CSAFPID-0001"
],
"url": "http://www.siemens.com/cert/advisories/"
},
{
"category": "vendor_fix",
"details": "In addition, ICS-CERT recommends that users take the following measures to protect themselves from social engineering attacks:",
"product_ids": [
"CSAFPID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.6,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:L",
"version": "3.0"
},
"products": [
"CSAFPID-0001"
]
}
]
},
{
"cve": "CVE-2017-2689",
"cwe": {
"id": "CWE-285",
"name": "Improper Authorization"
},
"notes": [
{
"category": "summary",
"text": "An authenticated user could bypass access restrictions in the web interface at Port 10000/TCP to obtain privileged file system access or change configuration settings.CVE-2017-2689 has been assigned to this vulnerability. A CVSS v3 base score of 8.8 has been calculated; the CVSS vector string is (AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H).",
"title": "Vulnerability Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"category": "external",
"summary": "web.nvd.nist.gov",
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-2689"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Siemens recommends the following mitigations:",
"product_ids": [
"CSAFPID-0001"
]
},
{
"category": "vendor_fix",
"details": "https://support.industry.siemens.com/cs/ww/en/view/109746106",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109746106"
},
{
"category": "vendor_fix",
"details": "The mitigation tool for the affected ROX I-based products can be obtained from Siemens by doing one of the following:",
"product_ids": [
"CSAFPID-0001"
]
},
{
"category": "vendor_fix",
"details": "https://www.siemens.com/automation/support-request",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://www.siemens.com/automation/support-request"
},
{
"category": "vendor_fix",
"details": "https://w3.siemens.com/aspa_app/",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://w3.siemens.com/aspa_app/"
},
{
"category": "vendor_fix",
"details": "As a general security measure Siemens strongly recommends protecting network access to the web interface at Port 10000/TCP of ROX I-based devices with appropriate mechanisms and configuring the environment according to Siemens \u0027 operational guidelines in order to run the devices in a protected IT environment:",
"product_ids": [
"CSAFPID-0001"
]
},
{
"category": "vendor_fix",
"details": "https://www.siemens.com/cert/operational-guidelines-industrial-security",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://www.siemens.com/cert/operational-guidelines-industrial-security"
},
{
"category": "vendor_fix",
"details": "For more information on these vulnerabilities and detailed instructions, please see Siemens Security Advisory SSA-327980 at the following location:",
"product_ids": [
"CSAFPID-0001"
]
},
{
"category": "vendor_fix",
"details": "http://www.siemens.com/cert/advisories/",
"product_ids": [
"CSAFPID-0001"
],
"url": "http://www.siemens.com/cert/advisories/"
},
{
"category": "vendor_fix",
"details": "In addition, ICS-CERT recommends that users take the following measures to protect themselves from social engineering attacks:",
"product_ids": [
"CSAFPID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-0001"
]
}
]
},
{
"cve": "CVE-2017-6864",
"cwe": {
"id": "CWE-80",
"name": "Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS)"
},
"notes": [
{
"category": "summary",
"text": "The integrated web server at Port 10000/TCP could allow an authenticated user to perform stored Cross-Site Scripting attacks.CVE-2017-6864 has been assigned to this vulnerability. A CVSS v3 base score of 6.4 has been calculated; the CVSS vector string is (AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N).",
"title": "Vulnerability Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"category": "external",
"summary": "web.nvd.nist.gov",
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-6864"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Siemens recommends the following mitigations:",
"product_ids": [
"CSAFPID-0001"
]
},
{
"category": "vendor_fix",
"details": "https://support.industry.siemens.com/cs/ww/en/view/109746106",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109746106"
},
{
"category": "vendor_fix",
"details": "The mitigation tool for the affected ROX I-based products can be obtained from Siemens by doing one of the following:",
"product_ids": [
"CSAFPID-0001"
]
},
{
"category": "vendor_fix",
"details": "https://www.siemens.com/automation/support-request",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://www.siemens.com/automation/support-request"
},
{
"category": "vendor_fix",
"details": "https://w3.siemens.com/aspa_app/",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://w3.siemens.com/aspa_app/"
},
{
"category": "vendor_fix",
"details": "As a general security measure Siemens strongly recommends protecting network access to the web interface at Port 10000/TCP of ROX I-based devices with appropriate mechanisms and configuring the environment according to Siemens \u0027 operational guidelines in order to run the devices in a protected IT environment:",
"product_ids": [
"CSAFPID-0001"
]
},
{
"category": "vendor_fix",
"details": "https://www.siemens.com/cert/operational-guidelines-industrial-security",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://www.siemens.com/cert/operational-guidelines-industrial-security"
},
{
"category": "vendor_fix",
"details": "For more information on these vulnerabilities and detailed instructions, please see Siemens Security Advisory SSA-327980 at the following location:",
"product_ids": [
"CSAFPID-0001"
]
},
{
"category": "vendor_fix",
"details": "http://www.siemens.com/cert/advisories/",
"product_ids": [
"CSAFPID-0001"
],
"url": "http://www.siemens.com/cert/advisories/"
},
{
"category": "vendor_fix",
"details": "In addition, ICS-CERT recommends that users take the following measures to protect themselves from social engineering attacks:",
"product_ids": [
"CSAFPID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N",
"version": "3.0"
},
"products": [
"CSAFPID-0001"
]
}
]
}
]
}
CERTFR-2017-ALE-006
Vulnerability from certfr_alerte
De multiples vulnérabilités ont été découvertes dans SCADA Siemens RUGGEDCOM ROX I. Certaines d'entre elles permettent à un attaquant de provoquer injection de requêtes illégitimes par rebond, un contournement de la politique de sécurité et une atteinte à la confidentialité des données.
Contournement provisoire
Plusieurs vulnérabilités ont été reportées dans les équipements Siemens RUGGEDCOM ROX I.
Parmi les vulnérabilités décrites par l'éditeur, la CVE-2017-2688 permet
à l'attaquant d'effectuer des actions avec les privilèges d'un
utilisateur. L'attaquant doit inciter un utilisateur authentifié à
visiter une page malveillante ou à cliquer sur un lien malveillant. La
vulnérabilité CVE-2017-2689 permet quant à elle un accès privilégié au
système de fichier et autorise la modification de la configuration.
L'exploitation de cette vulnérabilité nécessite un accès authentifié
préalable à l'interface web de l'équipement sur le port TCP 10000.
Dans l'attente d'un correctif, l'éditeur à publié des éléments
permettant d'atténuer les risques portant sur les systèmes Siemens
RUGGEDCOM ROX I.
Se référer au bulletin de l'éditeur pour une liste exhaustive des
mesures de prévention à mettre en œuvre (cf. section Documentation).
RUGGEDCOM ROX I toutes versions
Impacted products
| Vendor | Product | Description |
|---|
References
| Title | Publication Time | Tags | |||
|---|---|---|---|---|---|
|
|||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [],
"affected_systems_content": "\u003cp\u003eRUGGEDCOM ROX I toutes versions\u003c/p\u003e ",
"closed_at": "2017-09-29",
"content": "## Contournement provisoire\n\nPlusieurs vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 report\u00e9es dans les \u00e9quipements Siemens\nRUGGEDCOM ROX I.\n\nParmi les vuln\u00e9rabilit\u00e9s d\u00e9crites par l\u0027\u00e9diteur, la CVE-2017-2688 permet\n\u00e0 l\u0027attaquant d\u0027effectuer des actions avec les privil\u00e8ges d\u0027un\nutilisateur. L\u0027attaquant doit inciter un utilisateur authentifi\u00e9 \u00e0\nvisiter une page malveillante ou \u00e0 cliquer sur un lien malveillant. La\nvuln\u00e9rabilit\u00e9 CVE-2017-2689 permet quant \u00e0 elle un acc\u00e8s privil\u00e9gi\u00e9 au\nsyst\u00e8me de fichier et autorise la modification de la configuration.\nL\u0027exploitation de cette vuln\u00e9rabilit\u00e9 n\u00e9cessite un acc\u00e8s authentifi\u00e9\npr\u00e9alable \u00e0 l\u0027interface web de l\u0027\u00e9quipement sur le port TCP 10000. \nDans l\u0027attente d\u0027un correctif, l\u0027\u00e9diteur \u00e0 publi\u00e9 des \u00e9l\u00e9ments\npermettant d\u0027att\u00e9nuer les risques portant sur les syst\u00e8mes Siemens\nRUGGEDCOM ROX I. \nSe r\u00e9f\u00e9rer au bulletin de l\u0027\u00e9diteur pour une liste exhaustive des\nmesures de pr\u00e9vention \u00e0 mettre en \u0153uvre (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2017-6864",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-6864"
},
{
"name": "CVE-2017-2689",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-2689"
},
{
"name": "CVE-2017-2688",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-2688"
},
{
"name": "CVE-2017-2687",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-2687"
},
{
"name": "CVE-2017-2686",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-2686"
}
],
"initial_release_date": "2017-03-29T00:00:00",
"last_revision_date": "2017-03-29T00:00:00",
"links": [],
"reference": "CERTFR-2017-ALE-006",
"revisions": [
{
"description": "version initiale.",
"revision_date": "2017-03-29T00:00:00.000000"
}
],
"risks": [
{
"description": "Injection de code indirecte \u00e0 distance"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Injection de requ\u00eates ill\u00e9gitimes par rebond (CSRF)"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans \u003cspan\nclass=\"textit\"\u003eSCADA Siemens RUGGEDCOM ROX I\u003c/span\u003e. Certaines d\u0027entre\nelles permettent \u00e0 un attaquant de provoquer injection de requ\u00eates\nill\u00e9gitimes par rebond, un contournement de la politique de s\u00e9curit\u00e9 et\nune atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans SCADA Siemens RUGGEDCOM ROX I",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Siemens SSA-327980 du 28 mars 2017",
"url": "http://www.siemens.com/cert/pool/cert/siemens_security_advisory_SSA-327980.pdf"
}
]
}
fkie_cve-2017-6864
Vulnerability from fkie_nvd
Published
2017-03-29 01:59
Modified
2025-04-20 01:37
Severity ?
Summary
The integrated web server in Siemens RUGGEDCOM ROX I (all versions) at port 10000/TCP could allow an authenticated user to perform stored Cross-Site Scripting attacks.
References
| URL | Tags | ||
|---|---|---|---|
| productcert@siemens.com | http://www.securityfocus.com/bid/97170 | Third Party Advisory, VDB Entry | |
| productcert@siemens.com | http://www.securitytracker.com/id/1038160 | ||
| productcert@siemens.com | https://ics-cert.us-cert.gov/advisories/ICSA-17-087-01 | ||
| productcert@siemens.com | https://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-327980.pdf | Vendor Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://www.securityfocus.com/bid/97170 | Third Party Advisory, VDB Entry | |
| af854a3a-2127-422b-91ae-364da2661108 | http://www.securitytracker.com/id/1038160 | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://ics-cert.us-cert.gov/advisories/ICSA-17-087-01 | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-327980.pdf | Vendor Advisory |
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| siemens | ruggedcom_rox_i | * |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:siemens:ruggedcom_rox_i:*:*:*:*:*:*:*:*",
"matchCriteriaId": "AE0398E8-031B-4072-A3A5-BF3A2A361AAB",
"versionEndIncluding": "2.9.0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "The integrated web server in Siemens RUGGEDCOM ROX I (all versions) at port 10000/TCP could allow an authenticated user to perform stored Cross-Site Scripting attacks."
},
{
"lang": "es",
"value": "El servidor web integrado en Siemens RUGGEDCOM ROX I (todas las versiones) en el puerto 10000/TCP podr\u00eda permitir a un usuario autenticado realizar ataques de env\u00edo de secuencias de comandos en sitios cruzados almacenados."
}
],
"id": "CVE-2017-6864",
"lastModified": "2025-04-20T01:37:25.860",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "LOW",
"cvssData": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "SINGLE",
"availabilityImpact": "NONE",
"baseScore": 3.5,
"confidentialityImpact": "NONE",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:S/C:N/I:P/A:N",
"version": "2.0"
},
"exploitabilityScore": 6.8,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
],
"cvssMetricV30": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N",
"version": "3.0"
},
"exploitabilityScore": 2.3,
"impactScore": 2.7,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2017-03-29T01:59:02.720",
"references": [
{
"source": "productcert@siemens.com",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securityfocus.com/bid/97170"
},
{
"source": "productcert@siemens.com",
"url": "http://www.securitytracker.com/id/1038160"
},
{
"source": "productcert@siemens.com",
"url": "https://ics-cert.us-cert.gov/advisories/ICSA-17-087-01"
},
{
"source": "productcert@siemens.com",
"tags": [
"Vendor Advisory"
],
"url": "https://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-327980.pdf"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securityfocus.com/bid/97170"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.securitytracker.com/id/1038160"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://ics-cert.us-cert.gov/advisories/ICSA-17-087-01"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "https://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-327980.pdf"
}
],
"sourceIdentifier": "productcert@siemens.com",
"vulnStatus": "Deferred",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-79"
}
],
"source": "productcert@siemens.com",
"type": "Secondary"
},
{
"description": [
{
"lang": "en",
"value": "CWE-79"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.
Loading…
Loading…