ID
VAR-201703-0646
CVE
CVE-2017-2689
TITLE
Siemens RUGGEDCOM ROX I Security Bypass Vulnerability
Trust: 0.8
DESCRIPTION
Siemens RUGGEDCOM ROX I (all versions) allow an authenticated user to bypass access restrictions in the web interface at port 10000/TCP to obtain privileged file system access or change configuration settings. SiemensRuggedCom's ROX-based firewall devices are used to connect devices in harsh environments such as substations, traffic management chassis, and more. Siemens RUGGEDCOM ROX I is prone to the following security vulnerabilities: : 1. A HTML-injection vulnerability 2. A cross-site scripting vulnerability 3. An information-disclosure vulnerability 4. An authorization-bypass vulnerability 5. A cross-site request-forgery vulnerability An attacker may leverage these issues to execute HTML and script code in the browser of an unsuspecting user in the context of the affected site, disclose sensitive information, perform certain unauthorized actions actions, gain unauthorized access, or bypass certain security restrictions
Trust: 2.61
IOT TAXONOMY
| category: | ['ICS', 'Network device'] | sub_category: | - | Trust: 0.6 |
| category: | ['ICS'] | sub_category: | - | Trust: 0.2 |
AFFECTED PRODUCTS
| vendor: | siemens | model: | ruggedcom rox i | scope: | lte | version: | 2.9.0 | Trust: 1.0 |
| vendor: | siemens | model: | ruggedcom rox i | scope: | eq | version: | - | Trust: 0.8 |
| vendor: | siemens | model: | ruggedcom rox i | scope: | - | version: | - | Trust: 0.6 |
| vendor: | siemens | model: | ruggedcom rox i | scope: | eq | version: | 2.9.0 | Trust: 0.6 |
| vendor: | siemens | model: | ruggedcom rox i | scope: | eq | version: | 0 | Trust: 0.3 |
| vendor: | ruggedcom rox i | model: | - | scope: | eq | version: | * | Trust: 0.2 |
CVSS
SEVERITY | CVSSV2 | CVSSV3 | |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
|
|
PROBLEMTYPE DATA
| problemtype: | CWE-285 | Trust: 1.0 |
| problemtype: | CWE-287 | Trust: 1.0 |
| problemtype: | CWE-264 | Trust: 0.8 |
THREAT TYPE
remote
Trust: 0.6
TYPE
authorization issue
Trust: 0.6
CONFIGURATIONS
PATCH
| title: | SSA-327980 | url: | https://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-327980.pdf | Trust: 0.8 |
| title: | SiemensRUGGEDCOMROXI security bypass vulnerability patch | url: | https://www.cnvd.org.cn/patchInfo/show/91176 | Trust: 0.6 |
| title: | Siemens RUGGEDCOM ROX I Security vulnerabilities | url: | http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=68860 | Trust: 0.6 |
EXTERNAL IDS
| db: | NVD | id: | CVE-2017-2689 | Trust: 3.5 |
| db: | SIEMENS | id: | SSA-327980 | Trust: 2.5 |
| db: | ICS CERT | id: | ICSA-17-087-01 | Trust: 1.9 |
| db: | BID | id: | 97170 | Trust: 1.9 |
| db: | SECTRACK | id: | 1038160 | Trust: 1.6 |
| db: | CNVD | id: | CNVD-2017-03650 | Trust: 0.8 |
| db: | CNNVD | id: | CNNVD-201703-1332 | Trust: 0.8 |
| db: | JVNDB | id: | JVNDB-2017-002723 | Trust: 0.8 |
| db: | IVD | id: | 683A6C58-61FD-4FC8-AFA8-1AC889ED64F1 | Trust: 0.2 |
REFERENCES
| url: | https://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-327980.pdf | Trust: 2.5 |
| url: | https://ics-cert.us-cert.gov/advisories/icsa-17-087-01 | Trust: 1.9 |
| url: | http://www.securitytracker.com/id/1038160 | Trust: 1.6 |
| url: | http://www.securityfocus.com/bid/97170 | Trust: 1.6 |
| url: | http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2017-2689 | Trust: 0.8 |
| url: | https://nvd.nist.gov/vuln/detail/cve-2017-2689 | Trust: 0.8 |
| url: | http://subscriber.communications.siemens.com/ | Trust: 0.3 |
CREDITS
Maxim Rupp
Trust: 0.3
SOURCES
| db: | IVD | id: | 683a6c58-61fd-4fc8-afa8-1ac889ed64f1 |
| db: | CNVD | id: | CNVD-2017-03650 |
| db: | BID | id: | 97170 |
| db: | JVNDB | id: | JVNDB-2017-002723 |
| db: | CNNVD | id: | CNNVD-201703-1332 |
| db: | NVD | id: | CVE-2017-2689 |
LAST UPDATE DATE
2025-04-20T23:20:05.183000+00:00
SOURCES UPDATE DATE
| db: | CNVD | id: | CNVD-2017-03650 | date: | 2017-03-29T00:00:00 |
| db: | BID | id: | 97170 | date: | 2017-03-28T00:00:00 |
| db: | JVNDB | id: | JVNDB-2017-002723 | date: | 2017-04-26T00:00:00 |
| db: | CNNVD | id: | CNNVD-201703-1332 | date: | 2019-10-23T00:00:00 |
| db: | NVD | id: | CVE-2017-2689 | date: | 2025-04-20T01:37:25.860 |
SOURCES RELEASE DATE
| db: | IVD | id: | 683a6c58-61fd-4fc8-afa8-1ac889ed64f1 | date: | 2017-03-29T00:00:00 |
| db: | CNVD | id: | CNVD-2017-03650 | date: | 2017-03-29T00:00:00 |
| db: | BID | id: | 97170 | date: | 2017-03-28T00:00:00 |
| db: | JVNDB | id: | JVNDB-2017-002723 | date: | 2017-04-26T00:00:00 |
| db: | CNNVD | id: | CNNVD-201703-1332 | date: | 2017-03-30T00:00:00 |
| db: | NVD | id: | CVE-2017-2689 | date: | 2017-03-29T01:59:01.813 |