CVE-2024-38278

EUVD-2024-37239

09.07.2024, 12:15

A vulnerability has been identified in RUGGEDCOM RMC8388 V5.X (All versions < V5.9.0), RUGGEDCOM RMC8388NC V5.X (All versions < V5.9.0), RUGGEDCOM RS416NCv2 V5.X (All versions < V5.9.0), RUGGEDCOM RS416PNCv2 V5.X (All versions < V5.9.0), RUGGEDCOM RS416Pv2 V5.X (All versions < V5.9.0), RUGGEDCOM RS416v2 V5.X (All versions < V5.9.0), RUGGEDCOM RS900 (32M) V5.X (All versions < V5.9.0), RUGGEDCOM RS900G (32M) V5.X (All versions < V5.9.0), RUGGEDCOM RS900GNC(32M) V5.X (All versions < V5.9.0), RUGGEDCOM RS900NC(32M) V5.X (All versions < V5.9.0), RUGGEDCOM RSG2100 (32M) V5.X (All versions < V5.9.0), RUGGEDCOM RSG2100NC(32M) V5.X (All versions < V5.9.0), RUGGEDCOM RSG2100P (32M) V5.X (All versions < V5.9.0), RUGGEDCOM RSG2100PNC (32M) V5.X (All versions < V5.9.0), RUGGEDCOM RSG2288 V5.X (All versions < V5.9.0), RUGGEDCOM RSG2288NC V5.X (All versions < V5.9.0), RUGGEDCOM RSG2300 V5.X (All versions < V5.9.0), RUGGEDCOM RSG2300NC V5.X (All versions < V5.9.0), RUGGEDCOM RSG2300P V5.X (All versions < V5.9.0), RUGGEDCOM RSG2300PNC V5.X (All versions < V5.9.0), RUGGEDCOM RSG2488 V5.X (All versions < V5.9.0), RUGGEDCOM RSG2488NC V5.X (All versions < V5.9.0), RUGGEDCOM RSG907R (All versions < V5.9.0), RUGGEDCOM RSG908C (All versions < V5.9.0), RUGGEDCOM RSG909R (All versions < V5.9.0), RUGGEDCOM RSG910C (All versions < V5.9.0), RUGGEDCOM RSG920P V5.X (All versions < V5.9.0), RUGGEDCOM RSG920PNC V5.X (All versions < V5.9.0), RUGGEDCOM RSL910 (All versions < V5.9.0), RUGGEDCOM RSL910NC (All versions < V5.9.0), RUGGEDCOM RST2228 (All versions < V5.9.0), RUGGEDCOM RST2228P (All versions < V5.9.0), RUGGEDCOM RST916C (All versions < V5.9.0), RUGGEDCOM RST916P (All versions < V5.9.0). The affected products with IP forwarding enabled wrongly make available certain remote services in non-managed VLANs, even if these services are not intentionally activated. An attacker could leverage this vulnerability to create a remote shell to the affected system.

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	Primary	6.6 MEDIUM	NETWORK	HIGH	HIGH	CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H

Base Score

CVSS 3.x

EPSS Score

Percentile: 26%

Early Detection

Affected products identified ahead of NVD analysis through intelligence sources.

Vendor	Product	Version	Source
siemens	ruggedcom_ros_rmc8388	𝑥 < 5.9.0	ADP
siemens	ruggedcom_ros_rmc8388nc	𝑥 < 5.9.0	ADP
siemens	ruggedcom_ros_rs416ncv2	𝑥 < 5.9.0	ADP
siemens	ruggedcom_ros_rs416pncv2	𝑥 < 5.9.0	ADP
siemens	ruggedcom_ros_rs416pv2	𝑥 < 5.9.0	ADP
siemens	ruggedcom_ros_rs416v2	𝑥 < 5.9.0	ADP
siemens	ruggedcom_ros_rs900	𝑥 < 5.9.0	ADP
siemens	ruggedcom_ros_rs900g	𝑥 < 5.9.0	ADP
siemens	ruggedcom_ros_rs900gnc	𝑥 < 5.9.0	ADP
siemens	ruggedcom_ros_rs900nc	𝑥 < 5.9.0	ADP
siemens	ruggedcom_ros_rsg2100	𝑥 < 5.9.0	ADP
siemens	ruggedcom_ros_rsg2100nc	𝑥 < 5.9.0	ADP
siemens	ruggedcom_ros_rsg2288	𝑥 < 5.9.0	ADP
siemens	ruggedcom_ros_rsg2288nc	𝑥 < 5.9.0	ADP
siemens	ruggedcom_ros_rsg2300	𝑥 < 5.9.0	ADP
siemens	ruggedcom_ros_rsg2300nc	𝑥 < 5.9.0	ADP
siemens	ruggedcom_ros_rsg2300p	𝑥 < 5.9.0	ADP
siemens	ruggedcom_ros_rsg2300pnc	𝑥 < 5.9.0	ADP
siemens	ruggedcom_ros_rsg2488	𝑥 < 5.9.0	ADP
siemens	ruggedcom_ros_rsg2488nc	𝑥 < 5.9.0	ADP
siemens	ruggedcom_ros_rsg907r	𝑥 < 5.9.0	ADP
siemens	ruggedcom_ros_rsg908c	𝑥 < 5.9.0	ADP
siemens	ruggedcom_ros_rsg909r	𝑥 < 5.9.0	ADP
siemens	ruggedcom_ros_rsg910c	𝑥 < 5.9.0	ADP
siemens	ruggedcom_ros_rsg920p	𝑥 < 5.9.0	ADP
siemens	ruggedcom_ros_rsg920pnc	𝑥 < 5.9.0	ADP
siemens	ruggedcom_ros_rsl910	𝑥 < 5.9.0	ADP
siemens	ruggedcom_ros_rsl910nc	𝑥 < 5.9.0	ADP
siemens	ruggedcom_ros_rst2228	𝑥 < 5.9.0	ADP
siemens	ruggedcom_ros_rst2228p	𝑥 < 5.9.0	ADP
siemens	ruggedcom_ros_rst916c	𝑥 < 5.9.0	ADP
siemens	ruggedcom_ros_rst916p	𝑥 < 5.9.0	ADP

Common Weakness Enumeration

CWE-266 - Incorrect Privilege Assignment
A product incorrectly assigns a privilege to a particular actor, creating an unintended sphere of control for that actor.

References

https://cert-portal.siemens.com/productcert/html/ssa-170375.html