CVSS3
Attack Vector
PHYSICAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L
EPSS
Percentile
20.9%
Affected devices store the CLI user passwords encrypted in flash memory. Attackers with physical access to the device could retrieve the file and decrypt the CLI user passwords.
Vendor | Product | Version | CPE |
---|---|---|---|
siemens | ruggedcom_rm1224_lte\(4g\)_eu_firmware | * | cpe:2.3:o:siemens:ruggedcom_rm1224_lte\(4g\)_eu_firmware:*:*:*:*:*:*:*:* |
siemens | ruggedcom_rm1224_lte\(4g\)_eu | - | cpe:2.3:h:siemens:ruggedcom_rm1224_lte\(4g\)_eu:-:*:*:*:*:*:*:* |
siemens | ruggedcom_rm1224_lte\(4g\)_nam_firmware | * | cpe:2.3:o:siemens:ruggedcom_rm1224_lte\(4g\)_nam_firmware:*:*:*:*:*:*:*:* |
siemens | ruggedcom_rm1224_lte\(4g\)_nam | - | cpe:2.3:h:siemens:ruggedcom_rm1224_lte\(4g\)_nam:-:*:*:*:*:*:*:* |
siemens | scalance_m804pb_firmware | * | cpe:2.3:o:siemens:scalance_m804pb_firmware:*:*:*:*:*:*:*:* |
siemens | scalance_m804pb | - | cpe:2.3:h:siemens:scalance_m804pb:-:*:*:*:*:*:*:* |
siemens | scalance_m812-1_adsl-router_firmware | * | cpe:2.3:o:siemens:scalance_m812-1_adsl-router_firmware:*:*:*:*:*:*:*:* |
siemens | scalance_m812-1_adsl-router | - | cpe:2.3:h:siemens:scalance_m812-1_adsl-router:-:*:*:*:*:*:*:* |
siemens | scalance_m816-1_adsl-router_firmware | * | cpe:2.3:o:siemens:scalance_m816-1_adsl-router_firmware:*:*:*:*:*:*:*:* |
siemens | scalance_m816-1_adsl-router | - | cpe:2.3:h:siemens:scalance_m816-1_adsl-router:-:*:*:*:*:*:*:* |