Vulnerability Details CVE-2015-7836
Siemens RUGGEDCOM ROS before 4.2.1 allows remote attackers to obtain sensitive information by sniffing the network for VLAN data within the padding section of an Ethernet frame.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.009
EPSS Ranking 74.2%
CVSS Severity
CVSS v2 Score 3.3
References
- http://www.securitytracker.com/id/1033973
- http://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-921524.pdf
- https://ics-cert.us-cert.gov/advisories/ICSA-15-300-01
- http://www.securitytracker.com/id/1033973
- http://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-921524.pdf
- https://ics-cert.us-cert.gov/advisories/ICSA-15-300-01
Products affected by CVE-2015-7836
-
cpe:2.3:o:siemens:ruggedcom_rugged_operating_system:3.10.1
-
cpe:2.3:o:siemens:ruggedcom_rugged_operating_system:3.11
-
cpe:2.3:o:siemens:ruggedcom_rugged_operating_system:3.11.0
-
cpe:2.3:o:siemens:ruggedcom_rugged_operating_system:3.11.4
-
cpe:2.3:o:siemens:ruggedcom_rugged_operating_system:3.12
-
cpe:2.3:o:siemens:ruggedcom_rugged_operating_system:3.12.1
-
cpe:2.3:o:siemens:ruggedcom_rugged_operating_system:3.12.2
-
cpe:2.3:o:siemens:ruggedcom_rugged_operating_system:3.12.4
-
cpe:2.3:o:siemens:ruggedcom_rugged_operating_system:3.2.5
-
cpe:2.3:o:siemens:ruggedcom_rugged_operating_system:3.3.6
-
cpe:2.3:o:siemens:ruggedcom_rugged_operating_system:3.4.9
-
cpe:2.3:o:siemens:ruggedcom_rugged_operating_system:3.5.4
-
cpe:2.3:o:siemens:ruggedcom_rugged_operating_system:3.6.6
-
cpe:2.3:o:siemens:ruggedcom_rugged_operating_system:3.7.9
-
cpe:2.3:o:siemens:ruggedcom_rugged_operating_system:3.8.5
-
cpe:2.3:o:siemens:ruggedcom_rugged_operating_system:3.9.3
-
cpe:2.3:o:siemens:ruggedcom_rugged_operating_system:4.0