Lucene search
K

378 matches found

Prion
Prion
added 2023/07/11 10:15 a.m.18 views

Design/Logic Flaw

A vulnerability has been identified in RUGGEDCOM ROX MX5000 All versions V2.16.0, RUGGEDCOM ROX MX5000RE All versions V2.16.0, RUGGEDCOM ROX RX1400 All versions V2.16.0, RUGGEDCOM ROX RX1500 All versions V2.16.0, RUGGEDCOM ROX RX1501 All versions V2.16.0, RUGGEDCOM ROX RX1510 All versions V2.16.0...

4CVSS7.6AI score0.00244EPSS
Exploits0References1Affected Software11
Prion
Prion
added 2023/07/11 10:15 a.m.21 views

Cross site scripting

A vulnerability has been identified in RUGGEDCOM ROX MX5000 All versions V2.16.0, RUGGEDCOM ROX MX5000RE All versions V2.16.0, RUGGEDCOM ROX RX1400 All versions V2.16.0, RUGGEDCOM ROX RX1500 All versions V2.16.0, RUGGEDCOM ROX RX1501 All versions V2.16.0, RUGGEDCOM ROX RX1510 All versions V2.16.0...

5.8CVSS5.9AI score0.00386EPSS
Exploits0References1Affected Software11
Prion
Prion
added 2023/07/11 10:15 a.m.19 views

Cross site request forgery (csrf)

A vulnerability has been identified in RUGGEDCOM ROX MX5000 All versions V2.16.0, RUGGEDCOM ROX MX5000RE All versions V2.16.0, RUGGEDCOM ROX RX1400 All versions V2.16.0, RUGGEDCOM ROX RX1500 All versions V2.16.0, RUGGEDCOM ROX RX1501 All versions V2.16.0, RUGGEDCOM ROX RX1510 All versions V2.16.0...

6.8CVSS8.3AI score0.00237EPSS
Exploits0References1Affected Software11
Prion
Prion
added 2023/07/11 10:15 a.m.19 views

Command injection

A vulnerability has been identified in RUGGEDCOM ROX MX5000 All versions V2.16.0, RUGGEDCOM ROX MX5000RE All versions V2.16.0, RUGGEDCOM ROX RX1400 All versions V2.16.0, RUGGEDCOM ROX RX1500 All versions V2.16.0, RUGGEDCOM ROX RX1501 All versions V2.16.0, RUGGEDCOM ROX RX1510 All versions V2.16.0...

5.8CVSS7.7AI score0.01294EPSS
Exploits0References1Affected Software11
Prion
Prion
added 2023/07/11 10:15 a.m.20 views

Cross site scripting

A vulnerability has been identified in RUGGEDCOM ROX MX5000 All versions V2.16.0, RUGGEDCOM ROX MX5000RE All versions V2.16.0, RUGGEDCOM ROX RX1400 All versions V2.16.0, RUGGEDCOM ROX RX1500 All versions V2.16.0, RUGGEDCOM ROX RX1501 All versions V2.16.0, RUGGEDCOM ROX RX1510 All versions V2.16.0...

5.8CVSS5.9AI score0.00386EPSS
Exploits0References1Affected Software11
CVE
CVE
added 2023/07/11 9:7 a.m.52 views

CVE-2023-36755

Siemens RUGGEDCOM ROX family devices are vulnerable to a command-injection in the web interface SCEP CA Certificate Name parameter due to missing server-side input sanitation. Affected products include ROX MX5000, MX5000RE, RX1400, RX1500, RX1501, RX1510, RX1511, RX1512, RX1524, RX1536, and RX500...

9.1CVSS7AI score0.00827EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2023/07/11 9:7 a.m.49 views

CVE-2023-36754

Siemens RUGGEDCOM ROX family (MX5000, MX5000RE, RX1400, RX1500, RX1501, RX1510, RX1511, RX1512, RX1524, RX1536, RX5000) is affected by a command injection vulnerability in the SCEP server configuration URL parameter, caused by missing server-side input sanitation. An authenticated privileged remo...

9.1CVSS7AI score0.01294EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/07/11 9:7 a.m.8 views

CVE-2023-36753

A vulnerability has been identified in RUGGEDCOM ROX MX5000 All versions V2.16.0, RUGGEDCOM ROX MX5000RE All versions V2.16.0, RUGGEDCOM ROX RX1400 All versions V2.16.0, RUGGEDCOM ROX RX1500 All versions V2.16.0, RUGGEDCOM ROX RX1501 All versions V2.16.0, RUGGEDCOM ROX RX1510 All versions V2.16.0...

9.1CVSS7.8AI score0.01294EPSS
Exploits0References1
CVE
CVE
added 2023/07/11 9:7 a.m.49 views

CVE-2023-36752

CVE-2023-36752 affects Siemens RUGGEDCOM ROX family (MX5000, MX5000RE, RX1400, RX1500, RX1501, RX1510, RX1511, RX1512, RX1524, RX1536, RX5000) with versions

9.1CVSS7AI score0.01294EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/07/11 9:7 a.m.18 views

CVE-2023-36751

A vulnerability has been identified in RUGGEDCOM ROX MX5000 All versions V2.16.0, RUGGEDCOM ROX MX5000RE All versions V2.16.0, RUGGEDCOM ROX RX1400 All versions V2.16.0, RUGGEDCOM ROX RX1500 All versions V2.16.0, RUGGEDCOM ROX RX1501 All versions V2.16.0, RUGGEDCOM ROX RX1510 All versions V2.16.0...

9.1CVSS9.3AI score0.01294EPSS
Exploits0References1
CVE
CVE
added 2023/07/11 9:7 a.m.53 views

CVE-2023-36751

CVE-2023-36751 affects Siemens RUGGEDCOM ROX family up to version V2.16.0 (MX5000, MX5000RE, RX1400, RX1500, RX1501, RX1510, RX1511, RX1512, RX1524, RX1536, RX5000). The install-app URL parameter in the web interface is vulnerable to command injection due to missing server-side input sanitation. ...

9.1CVSS7AI score0.01294EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2023/07/11 9:7 a.m.54 views

CVE-2023-36750

Siemens RUGGEDCOM ROX family (MX5000, MX5000RE, RX1400, RX1500, RX1501, RX1510, RX1511, RX1512, RX1524, RX1536, RX5000) are affected by CVE-2023-36750. The issue is a command injection in the web interface via the software-upgrade URL parameter caused by missing server-side input sanitation. An a...

9.1CVSS7AI score0.01294EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/07/11 9:7 a.m.17 views

CVE-2023-36750

A vulnerability has been identified in RUGGEDCOM ROX MX5000 All versions V2.16.0, RUGGEDCOM ROX MX5000RE All versions V2.16.0, RUGGEDCOM ROX RX1400 All versions V2.16.0, RUGGEDCOM ROX RX1500 All versions V2.16.0, RUGGEDCOM ROX RX1501 All versions V2.16.0, RUGGEDCOM ROX RX1510 All versions V2.16.0...

9.1CVSS9.3AI score0.01294EPSS
Exploits0References1
CVE
CVE
added 2023/07/11 9:7 a.m.52 views

CVE-2023-36749

Siemens RUGGEDCOM ROX family is affected by CVE-2023-36749 due to use of insecure TLS 1.0 in the webserver, enabling potential man-in-the-middle attacks with data confidentiality and integrity impact. Affected devices include ROX MX5000, MX5000RE, RX1400, RX1500, RX1501, RX1510, RX1511, RX1512, R...

7.4CVSS7.1AI score0.00244EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/07/11 9:7 a.m.8 views

CVE-2023-36748

A vulnerability has been identified in RUGGEDCOM ROX MX5000 All versions V2.16.0, RUGGEDCOM ROX MX5000RE All versions V2.16.0, RUGGEDCOM ROX RX1400 All versions V2.16.0, RUGGEDCOM ROX RX1500 All versions V2.16.0, RUGGEDCOM ROX RX1501 All versions V2.16.0, RUGGEDCOM ROX RX1510 All versions V2.16.0...

5.9CVSS6.7AI score0.00209EPSS
Exploits0References1
CVE
CVE
added 2023/07/11 9:7 a.m.49 views

CVE-2023-36748

CVE-2023-36748 affects Siemens RUGGEDCOM ROX family (MX5000/MX5000RE, RX1400, RX1500, RX1501, RX1510, RX1511, RX1512, RX1524, RX1536, RX5000) with all versions before V2.16.0. The root cause is that these devices are configured to offer weak ciphers by default, enabling an attacker in a man‑in‑th...

6.8CVSS6.2AI score0.00209EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/07/11 9:7 a.m.20 views

CVE-2023-36390

A vulnerability has been identified in RUGGEDCOM ROX MX5000 All versions V2.16.0, RUGGEDCOM ROX MX5000RE All versions V2.16.0, RUGGEDCOM ROX RX1400 All versions V2.16.0, RUGGEDCOM ROX RX1500 All versions V2.16.0, RUGGEDCOM ROX RX1501 All versions V2.16.0, RUGGEDCOM ROX RX1510 All versions V2.16.0...

8.8CVSS7.8AI score0.00386EPSS
Exploits0References1
CVE
CVE
added 2023/07/11 9:7 a.m.50 views

CVE-2023-36390

Siemens RUGGEDCOM ROX devices are affected by a reflected cross-site scripting (XSS) vulnerability in the web interface. Affected series include ROX MX5000, MX5000RE, RX1400, RX1500, RX1501, RX1510, RX1511, RX1512, RX1524, RX1536, and RX5000, all versions before V2.16.0. The issue arises from uns...

8.8CVSS5.7AI score0.00386EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2023/07/11 9:7 a.m.52 views

CVE-2023-36389

CVE-2023-36389 is a reflected cross-site scripting (XSS) vulnerability in the web interfaces of Siemens RUGGEDCOM ROX devices. Affected products include ROX MX5000, MX5000RE, RX1400, RX1500, RX1501, RX1510, RX1511, RX1512, RX1524, RX1536, and RX5000, all versions before V2.16.0. The flaw occurs w...

8.8CVSS5.7AI score0.00386EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2023/07/11 9:7 a.m.52 views

CVE-2023-36386

Affected products: Siemens RUGGEDCOM ROX family (MX5000, MX5000RE, RX1400, RX1500, RX1501, RX1510, RX1511, RX1512, RX1524, RX1536, RX5000) with versions prior to V2.16.0. Issue: a reflected cross-site scripting (XSS) vulnerability exists in the web interface where user-controlled input is echoed ...

8.8CVSS5.7AI score0.00386EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder