cbcvebase.
CVE-2012-4698
published 2012-12-23

CVE-2012-4698: Siemens RuggedCom Rugged Operating System (ROS) before 3.12, ROX I OS through 1.14.5, ROX II OS through 2.3.0, and RuggedMax OS through 4.2.1.4621.22 use…

PriorityP417medium4.3CVSS 2.0
AVNACMAuNCPINAN
EPSS
1.13%
62.5th percentile
Siemens RuggedCom Rugged Operating System (ROS) before 3.12, ROX I OS through 1.14.5, ROX II OS through 2.3.0, and RuggedMax OS through 4.2.1.4621.22 use hardcoded private keys for SSL and SSH communication, which makes it easier for man-in-the-middle attackers to spoof servers and decrypt network traffic by leveraging the availability of these keys within ROS files at all customer installations.

Affected

4 ranges
VendorProductVersion rangeFixed in
siemensros<= 3.11.0
siemensrox_i_os<= 1.14.5
siemensrox_ii_os<= 2.3.0
siemensruggedmax_os<= 4.2.1.4621.22
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.