Siemens RUGGEDCOM ROX II

Source: All CISA Advisories | Added:

The Siemens RUGGEDCOM ROX II family has a critical vulnerability that allows local attackers to bypass authentication and gain root access through the Built-In-Self-Test (BIST) mode. The vulnerability affects multiple models in the RUGGEDCOM ROX II family, and no fix is currently available.

---

Impact: RUGGEDCOM ROX MX5000, RUGGEDCOM ROX RX1536, RUGGEDCOM ROX RX5000, RUGGEDCOM ROX MX5000RE, RUGGEDCOM ROX RX1400, RUGGEDCOM ROX RX1500, RUGGEDCOM ROX RX1501, RUGGEDCOM ROX RX1510, RUGGEDCOM ROX RX1511, RUGGEDCOM ROX RX1512, RUGGEDCOM ROX RX1524

In the Wild: No

Age: Newly disclosed

Remediation: Ensure a secure boot password is set as described in the configuration manual to prevent unauthorized access to BIST mode.

Read Full Original Article →