SIEMENS-SSA-146325 · Published 2023-07-11 · View on Siemens ProductCERT ↗

SSA-146325 V1.0: Multiple Vulnerabilities in RUGGEDCOM ROX before V2.16

CVSS 9.8 CRITICAL

Risk Summary

<p>Devices based on RUGGEDCOM ROX before V2.16 contain multiple high severity vulnerabilities, including the third-party vulnerabilities: CVE-2022-24903, CVE-2022-2068, CVE-2021-22946, CVE-2022-22576, CVE-2022-27781, CVE-2022-27782, CVE-2022-32207, CVE-2022-1292.</p> <p>Siemens has released updates for the affected products and recommends to update to the latest versions.</p>

CVEs (8)

CVE-2022-24903 CVE-2022-2068 CVE-2021-22946 CVE-2022-22576 CVE-2022-27781 CVE-2022-27782 CVE-2022-32207 CVE-2022-1292

Remediations

Refer to Siemens ProductCERT advisory for patch and remediation guidance.

Affected Vendors

Siemens

Affected Products (1)

Siemens · SSA-146325 V1.0: Multiple Vulnerabilities in RUGGEDCOM ROX before V2.16 See advisory

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more