March 12, 2025
Proactive Defense: The Importance of Incident Response Planning in Cybersecurity
Rewterz Threat Alert – REvil Ransomware – Active IOCs
July 14, 2022Rewterz Threat Advisory – ICS: Multiple Siemens Mendix Vulnerabilities
July 15, 2022Rewterz Threat Alert – REvil Ransomware – Active IOCs
July 14, 2022Rewterz Threat Advisory – ICS: Multiple Siemens Mendix Vulnerabilities
July 15, 2022
Severity
High
Analysis Summary
CVE-2022-34663
Siemens RUGGEDCOM could allow a remote authenticated attacker to execute arbitrary code on the system, caused by a code injection vulnerability in the console component. By sending a specially-crafted request, an attacker could exploit this vulnerability to execute arbitrary code on the system.
Impact
- Code Execution
Indicators Of Compromise
CVE
- CVE-2022-34663
Affected Vendors
Siemens
Affected Products
- Siemens RUGGEDCOM ROS M2100
- Siemens RUGGEDCOM ROS RS416v2
- Siemens RUGGEDCOM ROS RS900G
- Siemens RUGGEDCOM ROS RS900G (32M)
Remediation
Refer to Siemens Security Advisory for patch, upgrade or suggested workaround information.