CVE-2023-49692 | Siemens RUGGEDCOM RM1224 LTE EU prior 7.2.2 IPsec Configuration os command injection (ssa-068047)

A vulnerability has been found in Siemens RUGGEDCOM RM1224 LTE EU, RUGGEDCOM RM1224 LTE NAM, SCALANCE M804PB, SCALANCE M812-1 ADSL-Router, SCALANCE M812-1 ADSL-Router, SCALANCE M816-1 ADSL-Router, SCALANCE M816-1 ADSL-Router, SCALANCE M826-2 SHDSL-Router, SCALANCE M874-2, SCALANCE M874-3, SCALANCE M876-3, SCALANCE M876-3, SCALANCE M876-4, SCALANCE M876-4, SCALANCE M876-4, SCALANCE MUM853-1, SCALANCE MUM856-1, SCALANCE MUM856-1, SCALANCE S615 and SCALANCE S615 EEC and classified as critical. Affected by this vulnerability is an unknown functionality of the component IPsec Configuration Handler. The manipulation leads to os command injection.

This vulnerability is known as CVE-2023-49692. The attack can be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2023-49692 | Siemens RUGGEDCOM RM1224 LTE EU prior 7.2.2 IPsec Configuration os command injection (ssa-068047)

Related Posts

CVE-2024-38620 | Linux Kernel up to 6.6.32/6.8.11/6.9.2 HCI_AMP Privilege Escalation

CVE-2024-0834 | webtechstreet Elementor Addon Elements Plugin 1.12.11 on WordPress cross site scripting

CVE-2024-0436 | mintplex-labs anything-llm up to 0.0.x timing discrepancy

CVE-2023-49860 | WP Project Manager Plugin up to 2.6.7 on WordPress cross site scripting