all InfoSec news
SSA-840800 V1.2 (Last Update: 2023-03-14): Code Injection Vulnerability in RUGGEDCOM ROS
Siemens ProductCERT Security Advisories cert-portal.siemens.com
RUGGEDCOM ROS-based devices are vulnerable to a web-based code injection attack. To execute this attack, it is necessary to access the system via the Command Line Interface (CLI).
Siemens has released updates for several affected products and recommends to update to the latest versions. Siemens recommends specific countermeasures for products where updates are not, or not yet available.
access attack cli code code injection code injection vulnerability command command line countermeasures devices injection injection attack interface latest line products ros ruggedcom siemens ssa system update updates vulnerability vulnerable web