CNNVD-202507-896 Information
CNNVD ID
CNNVD-202507-896
Related CVE
- CNNVD Published: 2025-07-08
Description (Chinese)
Siemens RUGGEDCOM i800等都是德国西门子(Siemens)公司的一款交换机。 Siemens多款产品存在加密问题漏洞,该漏洞源于使用不安全的加密算法,可能导致中间人攻击。以下产品及版本受到影响:RUGGEDCOM i800、RUGGEDCOM i801、RUGGEDCOM i802、RUGGEDCOM i803、RUGGEDCOM M2100、RUGGEDCOM M2200、RUGGEDCOM M969、RUGGEDCOM RMC30、RUGGEDCOM RMC8388 V4.X、RUGGEDCOM RMC8388 V5.X V5.10.0之前版本、RUGGEDCOM RP110、RUGGEDCOM RS1600、RUGGEDCOM RS1600F、RUGGEDCOM RS1600T、RUGGEDCOM RS400、RUGGEDCOM RS401、RUGGEDCOM RS416、RUGGEDCOM RS416P、RUGGEDCOM RS416Pv2 V4.X、RUGGEDCOM RS416Pv2 V5.X V5.10.0之前版本、RUGGEDCOM RS416v2 V4.X、RUGGEDCOM RS416v2 V5.X V5.10.0之前版本、RUGGEDCOM RS8000、RUGGEDCOM RS8000A、RUGGEDCOM RS8000H、RUGGEDCOM RS8000T、RUGGEDCOM RS900、RUGGEDCOM RS900 (32M) V4.X、RUGGEDCOM RS900 (32M) V5.X V5.10.0之前版本、RUGGEDCOM RS900G、RUGGEDCOM RS900G (32M) V4.X、RUGGEDCOM RS900G (32M) V5.X V5.10.0之前版本、RUGGEDCOM RS900GP、RUGGEDCOM RS900L、RUGGEDCOM RS900M-GETS-C01、RUGGEDCOM RS900M-GETS-XX、RUGGEDCOM RS900M-STND-C01、RUGGEDCOM RS900M-STND-XX、RUGGEDCOM RS900W、RUGGEDCOM RS910、RUGGEDCOM RS910L、RUGGEDCOM RS910W、RUGGEDCOM RS920L、RUGGEDCOM RS920W、RUGGEDCOM RS930L、RUGGEDCOM RS930W、RUGGEDCOM RS940G、RUGGEDCOM RS969、RUGGEDCOM RSG2100、RUGGEDCOM RSG2100 (32M) V4.X、RUGGEDCOM RSG2100 (32M) V5.X V5.10.0之前版本、RUGGEDCOM RSG2100P、RUGGEDCOM RSG2100P (32M) V4.X、RUGGEDCOM RSG2100P (32M) V5.X V5.10.0之前版本、RUGGEDCOM RSG2200、RUGGEDCOM RSG2288 V4.X、RUGGEDCOM RSG2288 V5.X V5.10.0之前版本、RUGGEDCOM RSG2300 V4.X、RUGGEDCOM RSG2300 V5.X V5.10.0之前版本、RUGGEDCOM RSG2300P V4.X、RUGGEDCOM RSG2300P V5.X V5.10.0之前版本、RUGGEDCOM RSG2488 V4.X、RUGGEDCOM RSG2488 V5.X V5.10.0之前版本、RUGGEDCOM RSG907R V5.10.0之前版本、RUGGEDCOM RSG908C V5.10.0之前版本、RUGGEDCOM RSG909R V5.10.0之前版本、RUGGEDCOM RSG910C V5.10.0之前版本、RUGGEDCOM RSG920P V4.X、RUGGEDCOM RSG920P V5.X V5.10.0之前版本、RUGGEDCOM RSL910 V5.10.0之前版本、RUGGEDCOM RST2228 V5.10.0之前版本、RUGGEDCOM RST2228P V5.10.0之前版本、RUGGEDCOM RST916C V5.10.0之前版本和RUGGEDCOM RST916P V5.10.0之前版本。
Description (English)
Siemens RUGEDCOM i800 and so on are a switch from Siemens, Germany. There is a encryption loophole in the Siemens multi-products, which stems from the use of unsafe encryption algorithms and may lead to attacks by intermediaries. The following products and their versions are affected: UU /U/U/U/U/U/U/U/U/U/U/U/U/U/U/U/U/U/U/U/U/U/U/U/U/U/U/U/U/U/U/U/U/U/U/U/U/U/U/U/C/C/C/C/R/R/R/C/R/R/C/R/C/C/C/C/G/C/G/T.
Hazard Level
Medium
Vulnerability Type
加密问题
Affected Vendor
西门子
Published
2025-07-08
Last Modified
2026-02-24
References
https://cert-portal.siemens.com/productcert/html/ssa-083019.html