cbcvebase.
CVE-2015-5537
published 2015-08-03

CVE-2015-5537: The SSL layer of the HTTPS service in Siemens RuggedCom ROS before 4.2.0 and ROX II does not properly implement CBC padding, which makes it easier for…

PriorityP419medium4.3CVSS 2.0
AVNACMAuNCPINAN
EPSS
1.14%
62.6th percentile
The SSL layer of the HTTPS service in Siemens RuggedCom ROS before 4.2.0 and ROX II does not properly implement CBC padding, which makes it easier for man-in-the-middle attackers to obtain cleartext data via a padding-oracle attack, a different vulnerability than CVE-2014-3566.

Affected

1 ranges
VendorProductVersion rangeFixed in
siemensruggedcom_rugged_operating_system< 4.2.04.2.0
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.