Siemens RUGGEDCOM ROX I

CVSS 8.8 HIGH

Risk Summary

ATTENTION: Remotely exploitable/low skill level to exploit.

CVE-2017-2686 CVE-2017-2687 CVE-2017-2688 CVE-2017-2689 CVE-2017-6864

Siemens recommends the following mitigations:
https://support.industry.siemens.com/cs/ww/en/view/109746106
The mitigation tool for the affected ROX I-based products can be obtained from Siemens by doing one of the following:
https://www.siemens.com/automation/support-request
https://w3.siemens.com/aspa_app/
As a general security measure Siemens strongly recommends protecting network access to the web interface at Port 10000/TCP of ROX I-based devices with appropriate mechanisms and configuring the environment according to Siemens ' operational guidelines in order to run the devices in a protected IT environment:
https://www.siemens.com/cert/operational-guidelines-industrial-security
For more information on these vulnerabilities and detailed instructions, please see Siemens Security Advisory SSA-327980 at the following location:
http://www.siemens.com/cert/advisories/
In addition, ICS-CERT recommends that users take the following measures to protect themselves from social engineering attacks:

Siemens

Siemens · RUGGEDCOM ROX I vers:all/*

Energy, Healthcare, and Transportation

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.