CVE-2013-6926 Information

Feb 14, 2021 cve

Description

The integrated HTTPS server in Siemens RuggedCom ROS before 3.12.2 allows remote authenticated users to bypass intended restrictions on administrative actions by leveraging access to a (1) guest or (2) operator account.

Reference

http://ics-cert.us-cert.gov/advisories/ICSA-13-340-01 http://www.siemens.com/innovation/pool/de/forschungsfelder/siemens_security_advisory_ssa-324789.pdf

Share on: