Multiple vulnerabilities in Siemens RUGGEDCOM ROX

1) Information disclosure

EUVDB-ID: #VU56672

Risk: Medium

CVSSv4.0: 4.9 [CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2021-37173

CWE-ID: CWE-200 - Information exposure

Exploit availability: No

Description

The vulnerability allows a remote attacker to gain access to potentially sensitive information.

The vulnerability exists due to excessive data output by the application in the Secure Shell (SSH). A remote authenticated attacker can gain unauthorized access to sensitive information on the system.

Mitigation

Install updates from vendor's website.

Vulnerable software versions

RUGGEDCOM ROX MX5000: before 2.14.1

RUGGEDCOM ROX RX1400: before 2.14.1

RUGGEDCOM ROX RX1500: before 2.14.1

RUGGEDCOM ROX RX1501: before 2.14.1

RUGGEDCOM ROX RX1510: before 2.14.1

RUGGEDCOM ROX RX1511: before 2.14.1

RUGGEDCOM ROX RX1512: before 2.14.1

RUGGEDCOM ROX RX1524: before 2.14.1

RUGGEDCOM ROX RX1536: before 2.14.1

RUGGEDCOM ROX RX5000: before 2.14.1

CPE2.3

• cpe:2.3:h:siemens:ruggedcom_rox_mx5000:*:*:*:*:*:*:*:*
• cpe:2.3:h:siemens:ruggedcom_rox_rx1400:*:*:*:*:*:*:*:*
• cpe:2.3:h:siemens:ruggedcom_rox_rx1500:*:*:*:*:*:*:*:*
• cpe:2.3:h:siemens:ruggedcom_rox_rx1501:*:*:*:*:*:*:*:*
• cpe:2.3:h:siemens:ruggedcom_rox_rx1510:*:*:*:*:*:*:*:*
• cpe:2.3:h:siemens:ruggedcom_rox_rx1511:*:*:*:*:*:*:*:*
• cpe:2.3:h:siemens:ruggedcom_rox_rx1512:*:*:*:*:*:*:*:*
• cpe:2.3:h:siemens:ruggedcom_rox_rx1524:*:*:*:*:*:*:*:*
• cpe:2.3:h:siemens:ruggedcom_rox_rx1536:*:*:*:*:*:*:*:*
• cpe:2.3:h:siemens:ruggedcom_rox_rx5000:*:*:*:*:*:*:*:*

External links

https://cert-portal.siemens.com/productcert/pdf/ssa-150692.pdf

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

2) Execution with unnecessary privileges

EUVDB-ID: #VU56673

Risk: Medium

CVSSv4.0: 6.3 [CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2021-37174

CWE-ID: CWE-250 - Execution with Unnecessary Privileges

Exploit availability: No

Description

The vulnerability allows a remote attacker to escalate privileges on the system.

The vulnerability exists due to application binary has a setuid bit. A remote authenticated attacker can run the affected binary and execute arbitrary code on the system with root privileges.

Mitigation

Install updates from vendor's website.

Vulnerable software versions

RUGGEDCOM ROX MX5000: before 2.14.1

RUGGEDCOM ROX RX1400: before 2.14.1

RUGGEDCOM ROX RX1500: before 2.14.1

RUGGEDCOM ROX RX1501: before 2.14.1

RUGGEDCOM ROX RX1510: before 2.14.1

RUGGEDCOM ROX RX1511: before 2.14.1

RUGGEDCOM ROX RX1512: before 2.14.1

RUGGEDCOM ROX RX1524: before 2.14.1

RUGGEDCOM ROX RX1536: before 2.14.1

RUGGEDCOM ROX RX5000: before 2.14.1

CPE2.3

• cpe:2.3:h:siemens:ruggedcom_rox_mx5000:*:*:*:*:*:*:*:*
• cpe:2.3:h:siemens:ruggedcom_rox_rx1400:*:*:*:*:*:*:*:*
• cpe:2.3:h:siemens:ruggedcom_rox_rx1500:*:*:*:*:*:*:*:*
• cpe:2.3:h:siemens:ruggedcom_rox_rx1501:*:*:*:*:*:*:*:*
• cpe:2.3:h:siemens:ruggedcom_rox_rx1510:*:*:*:*:*:*:*:*
• cpe:2.3:h:siemens:ruggedcom_rox_rx1511:*:*:*:*:*:*:*:*
• cpe:2.3:h:siemens:ruggedcom_rox_rx1512:*:*:*:*:*:*:*:*
• cpe:2.3:h:siemens:ruggedcom_rox_rx1524:*:*:*:*:*:*:*:*
• cpe:2.3:h:siemens:ruggedcom_rox_rx1536:*:*:*:*:*:*:*:*
• cpe:2.3:h:siemens:ruggedcom_rox_rx5000:*:*:*:*:*:*:*:*

External links

https://cert-portal.siemens.com/productcert/pdf/ssa-150692.pdf

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

3) Permissions, Privileges, and Access Controls

EUVDB-ID: #VU56674

Risk: Low

CVSSv4.0: 1.3 [CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-37175

CWE-ID: CWE-264 - Permissions, Privileges, and Access Controls

Exploit availability: No

Description

The vulnerability allows a remote attacker to escalate privileges on the system.

The vulnerability exists due to the affected devices do not properly handle permissions to traverse the file system. A remote authenticated attacker can gain access to an overview of the overview of the complete file system on the affected devices.

Mitigation

Install updates from vendor's website.

Vulnerable software versions

RUGGEDCOM ROX MX5000: before 2.14.1

RUGGEDCOM ROX RX1400: before 2.14.1

RUGGEDCOM ROX RX1500: before 2.14.1

RUGGEDCOM ROX RX1501: before 2.14.1

RUGGEDCOM ROX RX1510: before 2.14.1

RUGGEDCOM ROX RX1511: before 2.14.1

RUGGEDCOM ROX RX1512: before 2.14.1

RUGGEDCOM ROX RX1524: before 2.14.1

RUGGEDCOM ROX RX1536: before 2.14.1

RUGGEDCOM ROX RX5000: before 2.14.1

CPE2.3

• cpe:2.3:h:siemens:ruggedcom_rox_mx5000:*:*:*:*:*:*:*:*
• cpe:2.3:h:siemens:ruggedcom_rox_rx1400:*:*:*:*:*:*:*:*
• cpe:2.3:h:siemens:ruggedcom_rox_rx1500:*:*:*:*:*:*:*:*
• cpe:2.3:h:siemens:ruggedcom_rox_rx1501:*:*:*:*:*:*:*:*
• cpe:2.3:h:siemens:ruggedcom_rox_rx1510:*:*:*:*:*:*:*:*
• cpe:2.3:h:siemens:ruggedcom_rox_rx1511:*:*:*:*:*:*:*:*
• cpe:2.3:h:siemens:ruggedcom_rox_rx1512:*:*:*:*:*:*:*:*
• cpe:2.3:h:siemens:ruggedcom_rox_rx1524:*:*:*:*:*:*:*:*
• cpe:2.3:h:siemens:ruggedcom_rox_rx1536:*:*:*:*:*:*:*:*
• cpe:2.3:h:siemens:ruggedcom_rox_rx5000:*:*:*:*:*:*:*:*

External links

https://cert-portal.siemens.com/productcert/pdf/ssa-150692.pdf

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.