CVE-2023-36749

CVSS 3.1 Score 7.4 of 10 (high)

Details

Published Jul 11, 2023

Updated: Jul 18, 2023

CWE ID 327

Summary

CVE-2023-36749 is a vulnerability affecting multiple RUGGEDCOM device models including ROX MX5000, ROX MX5000RE, ROX RX1400, ROX RX1500, ROX RX1501, ROX RX1510, ROX RX1511, ROX RX1512, ROX RX1524, ROX RX1536, and ROX RX5000. These devices have a webserver that supports the insecure TLS 1.0 protocol. An attacker could exploit this weakness to execute man-in-the-middle attacks, potentially compromising the confidentiality and integrity of transmitted data. Upgrading to a secure TLS version is recommended to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Siemens AG

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/rzThLd
https://www.cve.org/CVERecord?id=CVE-2023-36749
https://nvd.nist.gov/vuln/detail/CVE-2023-36749

Back to Vulnerability Database

CVE-2023-36749

CVSS 3.1 Score 7.4 of 10 (high)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations