CVE-2023-49692OS Command Injection in Siemens Ruggedcom Rm1224 LTE EU

CWE-78OS Command Injection3 documents3 sources
Severity
6.7MEDIUMNVD
CNA7.2
EPSS
0.1%
top 66.75%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
34
Siemens Ruggedcom Rm1224 LTE EUSiemens Ruggedcom Rm1224 LTE NAMSiemens Scalance M804pb+31 more
Timeline
PublishedDec 12

Description

A vulnerability has been identified in RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2) (All versions < V7.2.2), RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2) (All versions < V7.2.2), SCALANCE M804PB (6GK5804-0AP00-2AA2) (All versions < V7.2.2), SCALANCE M812-1 ADSL-Router (6GK5812-1AA00-2AA2) (All versions < V7.2.2), SCALANCE M812-1 ADSL-Router (6GK5812-1BA00-2AA2) (All versions < V7.2.2), SCALANCE M816-1 ADSL-Router (6GK5816-1AA00-2AA2) (All versions < V7.2.2), SCALANCE M816-1 ADSL-Router

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:HExploitability: 0.8 | Impact: 5.9

Affected Packages34 packages

🔴Vulnerability Details

2
GHSA
GHSA-7p99-x6w8-v88h: A vulnerability has been identified in RUGGEDCOM RM1224 LTE(4G) EU (All versions < V72023-12-12
CVEList
CVE-2023-49692: A vulnerability has been identified in RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2) (All versions < V72023-12-12