CVE-2014-1966
published 2014-02-24CVE-2014-1966: The SNMP implementation in Siemens RuggedCom ROS before 3.11, ROS 3.11 for RS950G, ROS 3.12 before 3.12.4, and ROS 4.0 for RSG2488 allows remote attackers to…
PriorityP336high7.8CVSS 2.0
AVNACLAuNCNINAC
EPSS
2.16%
79.9th percentile
The SNMP implementation in Siemens RuggedCom ROS before 3.11, ROS 3.11 for RS950G, ROS 3.12 before 3.12.4, and ROS 4.0 for RSG2488 allows remote attackers to cause a denial of service (device outage) via crafted packets.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| siemens | ruggedcom_rugged_operating_system | < 3.11.0 | 3.11.0 |
| siemens | ruggedcom_rugged_operating_system | < 3.11.5 | 3.11.5 |
| siemens | ruggedcom_rugged_operating_system | < 4.1.0 | 4.1.0 |
| siemens | ruggedcom_rugged_operating_system | >= 3.12 < 3.12.4 | 3.12.4 |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
CISA ICS
Siemens RuggedCom Uncontrolled Resource Consumption Vulnerability (Update B)
cisa_ics·2018-09-06
Siemens RuggedCom Uncontrolled Resource Consumption Vulnerability (Update B)
## Archived Content In an effort to keep CISA.gov current, the archive contains outdated information that may not reflect current policy or programs.
ICS Advisory
##
Siemens RuggedCom Uncontrolled Resource Consumption Vulnerability (Update B)
Last RevisedSeptember 06, 2018
Alert CodeICSA-14-051-03B
## OVERVIEW
This updated advisory is a follow-up to the updated advisory titled ICSA-14-051-03A Siemens RuggedCom Uncontrolled Resource Consumption Vulnerability that was published March 18, 2014, on the NCCIC/ICS-CERT web site.
Researchers Ling Toh Koh, Ng Yi Teng, Seyed Dawood Sajjadi Torshizi, Ryan Lee, and Ho Ping Hou of EV-Dynamic, Malaysia, have identified an uncontrolled resource consumption vulnerability in the Siemens RuggedCom ROS-based
GHSA
GHSA-v4p7-998x-cj54: The SNMP implementation in Siemens RuggedCom ROS before 3
ghsa_unreviewed·2022-05-13
CVE-2014-1966 [HIGH] GHSA-v4p7-998x-cj54: The SNMP implementation in Siemens RuggedCom ROS before 3
The SNMP implementation in Siemens RuggedCom ROS before 3.11, ROS 3.11 for RS950G, ROS 3.12 before 3.12.4, and ROS 4.0 for RSG2488 allows remote attackers to cause a denial of service (device outage) via crafted packets.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://ics-cert.us-cert.gov/advisories/ICSA-14-051-03http://www.siemens.com/innovation/pool/de/forschungsfelder/siemens_security_advisory_ssa-892342.pdfhttp://ics-cert.us-cert.gov/advisories/ICSA-14-051-03http://www.siemens.com/innovation/pool/de/forschungsfelder/siemens_security_advisory_ssa-892342.pdf
2014-02-24
Published