{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"state": "PUBLISHED", "cveId": "CVE-2021-37209", "assignerOrgId": "cec7a2ec-15b4-4faf-bd53-b40f371f3a77", "assignerShortName": "siemens", "dateUpdated": "2025-04-21T13:55:53.304Z", "dateReserved": "2021-07-21T00:00:00.000Z", "datePublished": "2022-03-08T00:00:00.000Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "cec7a2ec-15b4-4faf-bd53-b40f371f3a77", "shortName": "siemens", "dateUpdated": "2023-11-14T11:03:09.603Z"}, "descriptions": [{"lang": "en", "value": "A vulnerability has been identified in RUGGEDCOM i800 (All versions < V4.3.8), RUGGEDCOM i801 (All versions < V4.3.8), RUGGEDCOM i802 (All versions < V4.3.8), RUGGEDCOM i803 (All versions < V4.3.8), RUGGEDCOM M2100 (All versions < V4.3.8), RUGGEDCOM M2200 (All versions < V4.3.8), RUGGEDCOM M969 (All versions < V4.3.8), RUGGEDCOM RMC30 (All versions < V4.3.8), RUGGEDCOM RMC8388 V4.X (All versions < V4.3.8), RUGGEDCOM RMC8388 V5.X (All versions < V5.7.0), RUGGEDCOM RP110 (All versions < V4.3.8), RUGGEDCOM RS1600 (All versions < V4.3.8), RUGGEDCOM RS1600F (All versions < V4.3.8), RUGGEDCOM RS1600T (All versions < V4.3.8), RUGGEDCOM RS400 (All versions < V4.3.8), RUGGEDCOM RS401 (All versions < V4.3.8), RUGGEDCOM RS416 (All versions < V4.3.8), RUGGEDCOM RS416P (All versions < V4.3.8), RUGGEDCOM RS416Pv2 V4.X (All versions < V4.3.8), RUGGEDCOM RS416Pv2 V5.X (All versions < V5.7.0), RUGGEDCOM RS416v2 V4.X (All versions < V4.3.8), RUGGEDCOM RS416v2 V5.X (All versions < V5.7.0), RUGGEDCOM RS8000 (All versions < V4.3.8), RUGGEDCOM RS8000A (All versions < V4.3.8), RUGGEDCOM RS8000H (All versions < V4.3.8), RUGGEDCOM RS8000T (All versions < V4.3.8), RUGGEDCOM RS900 (All versions < V4.3.8), RUGGEDCOM RS900 (32M) V4.X (All versions < V4.3.8), RUGGEDCOM RS900 (32M) V5.X (All versions < V5.7.0), RUGGEDCOM RS900G (All versions < V4.3.8), RUGGEDCOM RS900G (32M) V4.X (All versions < V4.3.8), RUGGEDCOM RS900G (32M) V5.X (All versions < V5.7.0), RUGGEDCOM RS900GP (All versions < V4.3.8), RUGGEDCOM RS900L (All versions < V4.3.8), RUGGEDCOM RS900M-GETS-C01 (All versions < V4.3.8), RUGGEDCOM RS900M-GETS-XX (All versions < V4.3.8), RUGGEDCOM RS900M-STND-C01 (All versions < V4.3.8), RUGGEDCOM RS900M-STND-XX (All versions < V4.3.8), RUGGEDCOM RS900W (All versions < V4.3.8), RUGGEDCOM RS910 (All versions < V4.3.8), RUGGEDCOM RS910L (All versions < V4.3.8), RUGGEDCOM RS910W (All versions < V4.3.8), RUGGEDCOM RS920L (All versions < V4.3.8), RUGGEDCOM RS920W (All versions < V4.3.8), RUGGEDCOM RS930L (All versions < V4.3.8), RUGGEDCOM RS930W (All versions < V4.3.8), RUGGEDCOM RS940G (All versions < V4.3.8), RUGGEDCOM RS969 (All versions < V4.3.8), RUGGEDCOM RSG2100 (All versions < V4.3.8), RUGGEDCOM RSG2100 (32M) V4.X (All versions < V4.3.8), RUGGEDCOM RSG2100 (32M) V5.X (All versions < V5.7.0), RUGGEDCOM RSG2100P (All versions < V4.3.8), RUGGEDCOM RSG2200 (All versions < V4.3.8), RUGGEDCOM RSG2288 V4.X (All versions < V4.3.8), RUGGEDCOM RSG2288 V5.X (All versions < V5.7.0), RUGGEDCOM RSG2300 V4.X (All versions < V4.3.8), RUGGEDCOM RSG2300 V5.X (All versions < V5.7.0), RUGGEDCOM RSG2300P V4.X (All versions < V4.3.8), RUGGEDCOM RSG2300P V5.X (All versions < V5.7.0), RUGGEDCOM RSG2488 V4.X (All versions < V4.3.8), RUGGEDCOM RSG2488 V5.X (All versions < V5.7.0), RUGGEDCOM RSG907R (All versions < V5.7.0), RUGGEDCOM RSG908C (All versions < V5.7.0), RUGGEDCOM RSG909R (All versions < V5.7.0), RUGGEDCOM RSG910C (All versions < V5.7.0), RUGGEDCOM RSG920P V4.X (All versions < V4.3.8), RUGGEDCOM RSG920P V5.X (All versions < V5.7.0), RUGGEDCOM RSL910 (All versions < V5.7.0), RUGGEDCOM RST2228 (All versions < V5.7.0), RUGGEDCOM RST2228P (All versions < V5.7.0), RUGGEDCOM RST916C (All versions < V5.7.0), RUGGEDCOM RST916P (All versions < V5.7.0). The SSH server on affected devices is configured to offer weak ciphers by default.\r\n\r\nThis could allow an unauthorized attacker in a man-in-the-middle position to read and modify any data passed over the connection between legitimate clients and the affected device."}], "affected": [{"vendor": "Siemens", "product": "RUGGEDCOM i800", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM i801", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM i802", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM i803", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM M2100", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM M2200", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM M969", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RMC30", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RMC8388 V4.X", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RMC8388 V5.X", "versions": [{"version": "All versions < V5.7.0", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RP110", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RS1600", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RS1600F", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RS1600T", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RS400", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RS401", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RS416", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RS416P", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RS416Pv2 V4.X", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RS416Pv2 V5.X", "versions": [{"version": "All versions < V5.7.0", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RS416v2 V4.X", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RS416v2 V5.X", "versions": [{"version": "All versions < V5.7.0", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RS8000", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RS8000A", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RS8000H", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RS8000T", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RS900", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RS900 (32M) V4.X", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RS900 (32M) V5.X", "versions": [{"version": "All versions < V5.7.0", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RS900G", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RS900G (32M) V4.X", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RS900G (32M) V5.X", "versions": [{"version": "All versions < V5.7.0", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RS900GP", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RS900L", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RS900M-GETS-C01", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RS900M-GETS-XX", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RS900M-STND-C01", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RS900M-STND-XX", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RS900W", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RS910", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RS910L", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RS910W", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RS920L", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RS920W", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RS930L", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RS930W", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RS940G", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RS969", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RSG2100", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RSG2100 (32M) V4.X", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RSG2100 (32M) V5.X", "versions": [{"version": "All versions < V5.7.0", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RSG2100P", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RSG2200", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RSG2288 V4.X", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RSG2288 V5.X", "versions": [{"version": "All versions < V5.7.0", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RSG2300 V4.X", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RSG2300 V5.X", "versions": [{"version": "All versions < V5.7.0", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RSG2300P V4.X", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RSG2300P V5.X", "versions": [{"version": "All versions < V5.7.0", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RSG2488 V4.X", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RSG2488 V5.X", "versions": [{"version": "All versions < V5.7.0", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RSG907R", "versions": [{"version": "All versions < V5.7.0", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RSG908C", "versions": [{"version": "All versions < V5.7.0", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RSG909R", "versions": [{"version": "All versions < V5.7.0", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RSG910C", "versions": [{"version": "All versions < V5.7.0", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RSG920P V4.X", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RSG920P V5.X", "versions": [{"version": "All versions < V5.7.0", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RSL910", "versions": [{"version": "All versions < V5.7.0", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RST2228", "versions": [{"version": "All versions < V5.7.0", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RST2228P", "versions": [{"version": "All versions < V5.7.0", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RST916C", "versions": [{"version": "All versions < V5.7.0", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RST916P", "versions": [{"version": "All versions < V5.7.0", "status": "affected"}], "defaultStatus": "unknown"}], "metrics": [{"cvssV3_1": {"version": "3.1", "vectorString": "CVSS:3.1/AV:A/AC:H/PR:N/UI:R/S:U/C:L/I:H/A:H/E:P/RL:U/RC:C", "baseScore": 6.7, "baseSeverity": "MEDIUM"}}], "problemTypes": [{"descriptions": [{"lang": "en", "cweId": "CWE-326", "description": "CWE-326: Inadequate Encryption Strength", "type": "CWE"}]}], "references": [{"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-764417.pdf"}]}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-04T01:16:03.378Z"}, "title": "CVE Program Container", "references": [{"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-764417.pdf", "tags": ["x_transferred"]}]}, {"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2025-04-18T15:15:32.474081Z", "id": "CVE-2021-37209", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-04-21T13:55:53.304Z"}}]}}

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"state": "PUBLISHED", "cveId": "CVE-2021-37209", "assignerOrgId": "cec7a2ec-15b4-4faf-bd53-b40f371f3a77", "assignerShortName": "siemens", "dateUpdated": "2025-04-21T13:55:53.304Z", "dateReserved": "2021-07-21T00:00:00.000Z", "datePublished": "2022-03-08T00:00:00.000Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "cec7a2ec-15b4-4faf-bd53-b40f371f3a77", "shortName": "siemens", "dateUpdated": "2023-11-14T11:03:09.603Z"}, "descriptions": [{"lang": "en", "value": "A vulnerability has been identified in RUGGEDCOM i800 (All versions < V4.3.8), RUGGEDCOM i801 (All versions < V4.3.8), RUGGEDCOM i802 (All versions < V4.3.8), RUGGEDCOM i803 (All versions < V4.3.8), RUGGEDCOM M2100 (All versions < V4.3.8), RUGGEDCOM M2200 (All versions < V4.3.8), RUGGEDCOM M969 (All versions < V4.3.8), RUGGEDCOM RMC30 (All versions < V4.3.8), RUGGEDCOM RMC8388 V4.X (All versions < V4.3.8), RUGGEDCOM RMC8388 V5.X (All versions < V5.7.0), RUGGEDCOM RP110 (All versions < V4.3.8), RUGGEDCOM RS1600 (All versions < V4.3.8), RUGGEDCOM RS1600F (All versions < V4.3.8), RUGGEDCOM RS1600T (All versions < V4.3.8), RUGGEDCOM RS400 (All versions < V4.3.8), RUGGEDCOM RS401 (All versions < V4.3.8), RUGGEDCOM RS416 (All versions < V4.3.8), RUGGEDCOM RS416P (All versions < V4.3.8), RUGGEDCOM RS416Pv2 V4.X (All versions < V4.3.8), RUGGEDCOM RS416Pv2 V5.X (All versions < V5.7.0), RUGGEDCOM RS416v2 V4.X (All versions < V4.3.8), RUGGEDCOM RS416v2 V5.X (All versions < V5.7.0), RUGGEDCOM RS8000 (All versions < V4.3.8), RUGGEDCOM RS8000A (All versions < V4.3.8), RUGGEDCOM RS8000H (All versions < V4.3.8), RUGGEDCOM RS8000T (All versions < V4.3.8), RUGGEDCOM RS900 (All versions < V4.3.8), RUGGEDCOM RS900 (32M) V4.X (All versions < V4.3.8), RUGGEDCOM RS900 (32M) V5.X (All versions < V5.7.0), RUGGEDCOM RS900G (All versions < V4.3.8), RUGGEDCOM RS900G (32M) V4.X (All versions < V4.3.8), RUGGEDCOM RS900G (32M) V5.X (All versions < V5.7.0), RUGGEDCOM RS900GP (All versions < V4.3.8), RUGGEDCOM RS900L (All versions < V4.3.8), RUGGEDCOM RS900M-GETS-C01 (All versions < V4.3.8), RUGGEDCOM RS900M-GETS-XX (All versions < V4.3.8), RUGGEDCOM RS900M-STND-C01 (All versions < V4.3.8), RUGGEDCOM RS900M-STND-XX (All versions < V4.3.8), RUGGEDCOM RS900W (All versions < V4.3.8), RUGGEDCOM RS910 (All versions < V4.3.8), RUGGEDCOM RS910L (All versions < V4.3.8), RUGGEDCOM RS910W (All versions < V4.3.8), RUGGEDCOM RS920L (All versions < V4.3.8), RUGGEDCOM RS920W (All versions < V4.3.8), RUGGEDCOM RS930L (All versions < V4.3.8), RUGGEDCOM RS930W (All versions < V4.3.8), RUGGEDCOM RS940G (All versions < V4.3.8), RUGGEDCOM RS969 (All versions < V4.3.8), RUGGEDCOM RSG2100 (All versions < V4.3.8), RUGGEDCOM RSG2100 (32M) V4.X (All versions < V4.3.8), RUGGEDCOM RSG2100 (32M) V5.X (All versions < V5.7.0), RUGGEDCOM RSG2100P (All versions < V4.3.8), RUGGEDCOM RSG2200 (All versions < V4.3.8), RUGGEDCOM RSG2288 V4.X (All versions < V4.3.8), RUGGEDCOM RSG2288 V5.X (All versions < V5.7.0), RUGGEDCOM RSG2300 V4.X (All versions < V4.3.8), RUGGEDCOM RSG2300 V5.X (All versions < V5.7.0), RUGGEDCOM RSG2300P V4.X (All versions < V4.3.8), RUGGEDCOM RSG2300P V5.X (All versions < V5.7.0), RUGGEDCOM RSG2488 V4.X (All versions < V4.3.8), RUGGEDCOM RSG2488 V5.X (All versions < V5.7.0), RUGGEDCOM RSG907R (All versions < V5.7.0), RUGGEDCOM RSG908C (All versions < V5.7.0), RUGGEDCOM RSG909R (All versions < V5.7.0), RUGGEDCOM RSG910C (All versions < V5.7.0), RUGGEDCOM RSG920P V4.X (All versions < V4.3.8), RUGGEDCOM RSG920P V5.X (All versions < V5.7.0), RUGGEDCOM RSL910 (All versions < V5.7.0), RUGGEDCOM RST2228 (All versions < V5.7.0), RUGGEDCOM RST2228P (All versions < V5.7.0), RUGGEDCOM RST916C (All versions < V5.7.0), RUGGEDCOM RST916P (All versions < V5.7.0). The SSH server on affected devices is configured to offer weak ciphers by default.\r\n\r\nThis could allow an unauthorized attacker in a man-in-the-middle position to read and modify any data passed over the connection between legitimate clients and the affected device."}], "affected": [{"vendor": "Siemens", "product": "RUGGEDCOM i800", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM i801", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM i802", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM i803", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM M2100", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM M2200", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM M969", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RMC30", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RMC8388 V4.X", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RMC8388 V5.X", "versions": [{"version": "All versions < V5.7.0", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RP110", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RS1600", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RS1600F", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RS1600T", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RS400", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RS401", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RS416", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RS416P", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RS416Pv2 V4.X", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RS416Pv2 V5.X", "versions": [{"version": "All versions < V5.7.0", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RS416v2 V4.X", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RS416v2 V5.X", "versions": [{"version": "All versions < V5.7.0", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RS8000", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RS8000A", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RS8000H", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RS8000T", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RS900", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RS900 (32M) V4.X", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RS900 (32M) V5.X", "versions": [{"version": "All versions < V5.7.0", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RS900G", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RS900G (32M) V4.X", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RS900G (32M) V5.X", "versions": [{"version": "All versions < V5.7.0", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RS900GP", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RS900L", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RS900M-GETS-C01", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RS900M-GETS-XX", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RS900M-STND-C01", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RS900M-STND-XX", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RS900W", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RS910", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RS910L", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RS910W", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RS920L", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RS920W", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RS930L", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RS930W", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RS940G", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RS969", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RSG2100", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RSG2100 (32M) V4.X", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RSG2100 (32M) V5.X", "versions": [{"version": "All versions < V5.7.0", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RSG2100P", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RSG2200", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RSG2288 V4.X", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RSG2288 V5.X", "versions": [{"version": "All versions < V5.7.0", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RSG2300 V4.X", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RSG2300 V5.X", "versions": [{"version": "All versions < V5.7.0", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RSG2300P V4.X", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RSG2300P V5.X", "versions": [{"version": "All versions < V5.7.0", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RSG2488 V4.X", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RSG2488 V5.X", "versions": [{"version": "All versions < V5.7.0", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RSG907R", "versions": [{"version": "All versions < V5.7.0", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RSG908C", "versions": [{"version": "All versions < V5.7.0", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RSG909R", "versions": [{"version": "All versions < V5.7.0", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RSG910C", "versions": [{"version": "All versions < V5.7.0", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RSG920P V4.X", "versions": [{"version": "All versions < V4.3.8", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RSG920P V5.X", "versions": [{"version": "All versions < V5.7.0", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RSL910", "versions": [{"version": "All versions < V5.7.0", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RST2228", "versions": [{"version": "All versions < V5.7.0", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RST2228P", "versions": [{"version": "All versions < V5.7.0", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RST916C", "versions": [{"version": "All versions < V5.7.0", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "RUGGEDCOM RST916P", "versions": [{"version": "All versions < V5.7.0", "status": "affected"}], "defaultStatus": "unknown"}], "metrics": [{"cvssV3_1": {"version": "3.1", "vectorString": "CVSS:3.1/AV:A/AC:H/PR:N/UI:R/S:U/C:L/I:H/A:H/E:P/RL:U/RC:C", "baseScore": 6.7, "baseSeverity": "MEDIUM"}}], "problemTypes": [{"descriptions": [{"lang": "en", "cweId": "CWE-326", "description": "CWE-326: Inadequate Encryption Strength", "type": "CWE"}]}], "references": [{"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-764417.pdf"}]}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-04T01:16:03.378Z"}, "title": "CVE Program Container", "references": [{"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-764417.pdf", "tags": ["x_transferred"]}]}, {"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2021-37209", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2025-04-18T15:15:32.474081Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-04-18T15:15:34.229Z"}}]}}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:siemens:ruggedcom_ros:*:*:*:*:*:*:*:*", "matchCriteriaId": "50A58761-73DA-4862-8D95-6634479A8726", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:siemens:ruggedcom_i800:-:*:*:*:*:*:*:*", "matchCriteriaId": "2831856D-1C5F-4436-9A78-97FA309A3E14", "vulnerable": false}, {"criteria": "cpe:2.3:h:siemens:ruggedcom_i801:-:*:*:*:*:*:*:*", "matchCriteriaId": "C10F20F2-3E09-4F79-87F2-79B32093189D", "vulnerable": false}, {"criteria": "cpe:2.3:h:siemens:ruggedcom_i802:-:*:*:*:*:*:*:*", "matchCriteriaId": "50BB50DA-133E-440D-9D13-387484E6EDDD", "vulnerable": false}, {"criteria": "cpe:2.3:h:siemens:ruggedcom_i803:-:*:*:*:*:*:*:*", "matchCriteriaId": "78CC2FFF-A890-44D0-94D5-35519286928A", "vulnerable": false}, {"criteria": "cpe:2.3:h:siemens:ruggedcom_m2100:-:*:*:*:*:*:*:*", "matchCriteriaId": "1E48D7B9-139E-48EC-B8A1-8D802943A65B", "vulnerable": false}, {"criteria": "cpe:2.3:h:siemens:ruggedcom_m2200:-:*:*:*:*:*:*:*", "matchCriteriaId": "5A650B2E-F416-4690-BFDE-1C026E2ED321", "vulnerable": false}, {"criteria": "cpe:2.3:h:siemens:ruggedcom_m969:-:*:*:*:*:*:*:*", "matchCriteriaId": "76C19418-5C81-4091-AB7A-9C1A433C8396", "vulnerable": false}, {"criteria": "cpe:2.3:h:siemens:ruggedcom_rmc:-:*:*:*:*:*:*:*", "matchCriteriaId": "C3D37577-B574-4A32-9B64-D097F52A2BE3", "vulnerable": false}, {"criteria": "cpe:2.3:h:siemens:ruggedcom_rmc20:-:*:*:*:*:*:*:*", "matchCriteriaId": "A2F39CF1-4F57-48A7-9B8F-69A94A07E1BE", "vulnerable": false}, {"criteria": "cpe:2.3:h:siemens:ruggedcom_rmc30:-:*:*:*:*:*:*:*", "matchCriteriaId": "D0569A25-D7FA-40BF-95CD-CA81BF416E96", "vulnerable": false}, {"criteria": "cpe:2.3:h:siemens:ruggedcom_rmc40:-:*:*:*:*:*:*:*", "matchCriteriaId": "F4674627-743B-4173-ACDF-08444773D818", "vulnerable": false}, {"criteria": "cpe:2.3:h:siemens:ruggedcom_rmc41:-:*:*:*:*:*:*:*", "matchCriteriaId": "ED109F2A-818B-48A9-996F-CD3B784E448C", "vulnerable": false}, {"criteria": "cpe:2.3:h:siemens:ruggedcom_rmc8388:-:*:*:*:*:*:*:*", "matchCriteriaId": "EC9307A5-118E-4A06-9CC5-931478BE3440", "vulnerable": false}, {"criteria": "cpe:2.3:h:siemens:ruggedcom_rp110:-:*:*:*:*:*:*:*", "matchCriteriaId": "2C83846C-DDD0-40DB-A465-68C3E66BF28D", "vulnerable": false}, {"criteria": "cpe:2.3:h:siemens:ruggedcom_rs400:-:*:*:*:*:*:*:*", "matchCriteriaId": "449E690E-FE54-4D85-8C93-6E04BAB8EB58", "vulnerable": false}, {"criteria": "cpe:2.3:h:siemens:ruggedcom_rs401:-:*:*:*:*:*:*:*", "matchCriteriaId": "25F7428E-0E4E-497D-AA82-7CF8C9060CC3", "vulnerable": false}, {"criteria": "cpe:2.3:h:siemens:ruggedcom_rs416:-:*:*:*:*:*:*:*", "matchCriteriaId": "F59C884A-A7CA-4C67-B7D8-DC52318A0F97", "vulnerable": false}, {"criteria": "cpe:2.3:h:siemens:ruggedcom_rs416v2:-:*:*:*:*:*:*:*", "matchCriteriaId": "9DD536B4-BA38-4CC5-A480-163FF38FA167", "vulnerable": false}, {"criteria": "cpe:2.3:h:siemens:ruggedcom_rs8000:-:*:*:*:*:*:*:*", "matchCriteriaId": "D970A57E-771D-4EB6-9DA9-A2367D376FE5", "vulnerable": false}, {"criteria": "cpe:2.3:h:siemens:ruggedcom_rs8000a:-:*:*:*:*:*:*:*", "matchCriteriaId": "9B9BF9E7-E666-41D8-AC17-B1072C862CB7", "vulnerable": false}, {"criteria": "cpe:2.3:h:siemens:ruggedcom_rs8000h:-:*:*:*:*:*:*:*", "matchCriteriaId": "19A0D692-BBDA-4267-A636-7A42F472824F", "vulnerable": false}, {"criteria": "cpe:2.3:h:siemens:ruggedcom_rs8000t:-:*:*:*:*:*:*:*", "matchCriteriaId": "2B7DBE7F-0792-491A-872F-6826821D3333", "vulnerable": false}, {"criteria": "cpe:2.3:h:siemens:ruggedcom_rs900:-:*:*:*:*:*:*:*", "matchCriteriaId": "48249F47-DF98-4FA6-98B6-44C430854BCB", "vulnerable": false}, {"criteria": "cpe:2.3:h:siemens:ruggedcom_rs900g:-:*:*:*:*:*:*:*", "matchCriteriaId": "2A373335-A82D-4C63-B5E5-1D3A23ADC781", "vulnerable": false}, {"criteria": "cpe:2.3:h:siemens:ruggedcom_rs900gp:-:*:*:*:*:*:*:*", "matchCriteriaId": "97F74A17-8571-4FBD-ADEA-90A7A800141D", "vulnerable": false}, {"criteria": "cpe:2.3:h:siemens:ruggedcom_rs900l:-:*:*:*:*:*:*:*", "matchCriteriaId": "BE2C819C-C8A6-41B5-9BA1-C6284B122EC2", "vulnerable": false}, {"criteria": "cpe:2.3:h:siemens:ruggedcom_rs900w:-:*:*:*:*:*:*:*", "matchCriteriaId": "3E1BE62C-39AD-4D38-9CF3-6FE5E17422D2", "vulnerable": false}, {"criteria": "cpe:2.3:h:siemens:ruggedcom_rs910:-:*:*:*:*:*:*:*", "matchCriteriaId": "785CB18D-4CC2-49F6-8637-EB74A827C862", "vulnerable": false}, {"criteria": "cpe:2.3:h:siemens:ruggedcom_rs910l:-:*:*:*:*:*:*:*", "matchCriteriaId": "CC4E8754-9C83-4791-B414-F7A03AE7CF89", "vulnerable": false}, {"criteria": "cpe:2.3:h:siemens:ruggedcom_rs910w:-:*:*:*:*:*:*:*", "matchCriteriaId": "67F888CC-DC37-4CF6-94C0-C2671592C49D", "vulnerable": false}, {"criteria": "cpe:2.3:h:siemens:ruggedcom_rs920l:-:*:*:*:*:*:*:*", "matchCriteriaId": "B1223862-4C1C-4071-BCD5-1A96BC24C84D", "vulnerable": false}, {"criteria": "cpe:2.3:h:siemens:ruggedcom_rs920w:-:*:*:*:*:*:*:*", "matchCriteriaId": "7CB566F4-6D7E-461D-943A-3E04443336B5", "vulnerable": false}, {"criteria": "cpe:2.3:h:siemens:ruggedcom_rs930l:-:*:*:*:*:*:*:*", "matchCriteriaId": "EC870CB9-79B9-41A2-823E-C25A23E64788", "vulnerable": false}, {"criteria": "cpe:2.3:h:siemens:ruggedcom_rs930w:-:*:*:*:*:*:*:*", "matchCriteriaId": "7188D0D8-7194-411C-8D37-3A24419E7279", "vulnerable": false}, {"criteria": "cpe:2.3:h:siemens:ruggedcom_rs940g:-:*:*:*:*:*:*:*", "matchCriteriaId": "1361D12A-34C8-4C3D-9727-13812BE08F7E", "vulnerable": false}, {"criteria": "cpe:2.3:h:siemens:ruggedcom_rs969:-:*:*:*:*:*:*:*", "matchCriteriaId": "07DE5400-D40C-4721-8B02-E4CA330DDFDB", "vulnerable": false}, {"criteria": "cpe:2.3:h:siemens:ruggedcom_rsg2100:-:*:*:*:*:*:*:*", "matchCriteriaId": "2E3F4E29-3BF3-4510-9DA7-3D1262719A65", "vulnerable": false}, {"criteria": "cpe:2.3:h:siemens:ruggedcom_rsg2100p:-:*:*:*:*:*:*:*", "matchCriteriaId": "0DC2BB0C-9681-4535-8506-DE0E107F50D9", "vulnerable": false}, {"criteria": "cpe:2.3:h:siemens:ruggedcom_rsg2200:-:*:*:*:*:*:*:*", "matchCriteriaId": "1DCA528E-1EBB-442D-8138-0BD7AAF5B57E", "vulnerable": false}, {"criteria": "cpe:2.3:h:siemens:ruggedcom_rsg2288:-:*:*:*:*:*:*:*", "matchCriteriaId": "F42A83F2-B151-48E9-BC54-AC81B5C3B017", "vulnerable": false}, {"criteria": "cpe:2.3:h:siemens:ruggedcom_rsg2300:-:*:*:*:*:*:*:*", "matchCriteriaId": "22A00345-A3E6-40D2-BCB3-9FE042F02119", "vulnerable": false}, {"criteria": "cpe:2.3:h:siemens:ruggedcom_rsg2300p:-:*:*:*:*:*:*:*", "matchCriteriaId": "1B393AE3-6C76-4E36-96D3-90228AA7EC14", "vulnerable": false}, {"criteria": "cpe:2.3:h:siemens:ruggedcom_rsg2488:-:*:*:*:*:*:*:*", "matchCriteriaId": "7F1DB4EF-5CB1-43BA-AB1F-6D6D48ED859C", "vulnerable": false}, {"criteria": "cpe:2.3:h:siemens:ruggedcom_rsg907r:-:*:*:*:*:*:*:*", "matchCriteriaId": "0CC2D072-D8EA-45A2-9C2D-7AAA65FA683F", "vulnerable": false}, {"criteria": "cpe:2.3:h:siemens:ruggedcom_rsg908c:-:*:*:*:*:*:*:*", "matchCriteriaId": "49083023-8702-491B-A7C3-AF60FB605E9F", "vulnerable": false}, {"criteria": "cpe:2.3:h:siemens:ruggedcom_rsg909r:-:*:*:*:*:*:*:*", "matchCriteriaId": "8FDC0411-3A25-44D1-8929-FF2F4F432F8E", "vulnerable": false}, {"criteria": "cpe:2.3:h:siemens:ruggedcom_rsg910c:-:*:*:*:*:*:*:*", "matchCriteriaId": "11AA599E-B0FD-4708-A2CB-5B3CA89FD865", "vulnerable": false}, {"criteria": "cpe:2.3:h:siemens:ruggedcom_rsg920p:-:*:*:*:*:*:*:*", "matchCriteriaId": "1243655B-8636-43CF-8052-ABB5263B0BED", "vulnerable": false}, {"criteria": "cpe:2.3:h:siemens:ruggedcom_rsl910:-:*:*:*:*:*:*:*", "matchCriteriaId": "5F0C8879-659D-4A28-BA72-7BE05B5215CC", "vulnerable": false}, {"criteria": "cpe:2.3:h:siemens:ruggedcom_rst2228:-:*:*:*:*:*:*:*", "matchCriteriaId": "4CDDB741-B3B9-42C2-9C01-A6FC87A26B44", "vulnerable": false}, {"criteria": "cpe:2.3:h:siemens:ruggedcom_rst2228p:-:*:*:*:*:*:*:*", "matchCriteriaId": "8AAF8B55-5B3E-49EF-B7B4-BCCE11A09858", "vulnerable": false}, {"criteria": "cpe:2.3:h:siemens:ruggedcom_rst916c:-:*:*:*:*:*:*:*", "matchCriteriaId": "52713BFF-C34C-4233-AE92-B91D94911802", "vulnerable": false}, {"criteria": "cpe:2.3:h:siemens:ruggedcom_rst916p:-:*:*:*:*:*:*:*", "matchCriteriaId": "24F7373B-E91D-4524-9F1A-0BF4AAC9F461", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}], "descriptions": [{"lang": "en", "value": "A vulnerability has been identified in RUGGEDCOM i800 (All versions < V4.3.8), RUGGEDCOM i801 (All versions < V4.3.8), RUGGEDCOM i802 (All versions < V4.3.8), RUGGEDCOM i803 (All versions < V4.3.8), RUGGEDCOM M2100 (All versions < V4.3.8), RUGGEDCOM M2200 (All versions < V4.3.8), RUGGEDCOM M969 (All versions < V4.3.8), RUGGEDCOM RMC30 (All versions < V4.3.8), RUGGEDCOM RMC8388 V4.X (All versions < V4.3.8), RUGGEDCOM RMC8388 V5.X (All versions < V5.7.0), RUGGEDCOM RP110 (All versions < V4.3.8), RUGGEDCOM RS1600 (All versions < V4.3.8), RUGGEDCOM RS1600F (All versions < V4.3.8), RUGGEDCOM RS1600T (All versions < V4.3.8), RUGGEDCOM RS400 (All versions < V4.3.8), RUGGEDCOM RS401 (All versions < V4.3.8), RUGGEDCOM RS416 (All versions < V4.3.8), RUGGEDCOM RS416P (All versions < V4.3.8), RUGGEDCOM RS416Pv2 V4.X (All versions < V4.3.8), RUGGEDCOM RS416Pv2 V5.X (All versions < V5.7.0), RUGGEDCOM RS416v2 V4.X (All versions < V4.3.8), RUGGEDCOM RS416v2 V5.X (All versions < V5.7.0), RUGGEDCOM RS8000 (All versions < V4.3.8), RUGGEDCOM RS8000A (All versions < V4.3.8), RUGGEDCOM RS8000H (All versions < V4.3.8), RUGGEDCOM RS8000T (All versions < V4.3.8), RUGGEDCOM RS900 (All versions < V4.3.8), RUGGEDCOM RS900 (32M) V4.X (All versions < V4.3.8), RUGGEDCOM RS900 (32M) V5.X (All versions < V5.7.0), RUGGEDCOM RS900G (All versions < V4.3.8), RUGGEDCOM RS900G (32M) V4.X (All versions < V4.3.8), RUGGEDCOM RS900G (32M) V5.X (All versions < V5.7.0), RUGGEDCOM RS900GP (All versions < V4.3.8), RUGGEDCOM RS900L (All versions < V4.3.8), RUGGEDCOM RS900M-GETS-C01 (All versions < V4.3.8), RUGGEDCOM RS900M-GETS-XX (All versions < V4.3.8), RUGGEDCOM RS900M-STND-C01 (All versions < V4.3.8), RUGGEDCOM RS900M-STND-XX (All versions < V4.3.8), RUGGEDCOM RS900W (All versions < V4.3.8), RUGGEDCOM RS910 (All versions < V4.3.8), RUGGEDCOM RS910L (All versions < V4.3.8), RUGGEDCOM RS910W (All versions < V4.3.8), RUGGEDCOM RS920L (All versions < V4.3.8), RUGGEDCOM RS920W (All versions < V4.3.8), RUGGEDCOM RS930L (All versions < V4.3.8), RUGGEDCOM RS930W (All versions < V4.3.8), RUGGEDCOM RS940G (All versions < V4.3.8), RUGGEDCOM RS969 (All versions < V4.3.8), RUGGEDCOM RSG2100 (All versions < V4.3.8), RUGGEDCOM RSG2100 (32M) V4.X (All versions < V4.3.8), RUGGEDCOM RSG2100 (32M) V5.X (All versions < V5.7.0), RUGGEDCOM RSG2100P (All versions < V4.3.8), RUGGEDCOM RSG2200 (All versions < V4.3.8), RUGGEDCOM RSG2288 V4.X (All versions < V4.3.8), RUGGEDCOM RSG2288 V5.X (All versions < V5.7.0), RUGGEDCOM RSG2300 V4.X (All versions < V4.3.8), RUGGEDCOM RSG2300 V5.X (All versions < V5.7.0), RUGGEDCOM RSG2300P V4.X (All versions < V4.3.8), RUGGEDCOM RSG2300P V5.X (All versions < V5.7.0), RUGGEDCOM RSG2488 V4.X (All versions < V4.3.8), RUGGEDCOM RSG2488 V5.X (All versions < V5.7.0), RUGGEDCOM RSG907R (All versions < V5.7.0), RUGGEDCOM RSG908C (All versions < V5.7.0), RUGGEDCOM RSG909R (All versions < V5.7.0), RUGGEDCOM RSG910C (All versions < V5.7.0), RUGGEDCOM RSG920P V4.X (All versions < V4.3.8), RUGGEDCOM RSG920P V5.X (All versions < V5.7.0), RUGGEDCOM RSL910 (All versions < V5.7.0), RUGGEDCOM RST2228 (All versions < V5.7.0), RUGGEDCOM RST2228P (All versions < V5.7.0), RUGGEDCOM RST916C (All versions < V5.7.0), RUGGEDCOM RST916P (All versions < V5.7.0). The SSH server on affected devices is configured to offer weak ciphers by default.\r\n\r\nThis could allow an unauthorized attacker in a man-in-the-middle position to read and modify any data passed over the connection between legitimate clients and the affected device."}, {"lang": "es", "value": "Se ha identificado una vulnerabilidad en RUGGEDCOM ROS M2100, RUGGEDCOM ROS M2200, RUGGEDCOM ROS M969, RUGGEDCOM ROS RMC, RUGGEDCOM ROS RMC20, RUGGEDCOM ROS RMC30, RUGGEDCOM ROS RMC30 V4. X, RUGGEDCOM ROS RMC40, RUGGEDCOM ROS RMC41, RUGGEDCOM ROS RMC8388, RUGGEDCOM ROS RMC8388 V4.X, RUGGEDCOM ROS RMC8388 V5.X, RUGGEDCOM ROS RP110, RUGGEDCOM ROS RP110 V4.X, RUGGEDCOM ROS RS1600 V4. X, RUGGEDCOM ROS RS1600F V4.X, RUGGEDCOM ROS RS1600T V4.X, RUGGEDCOM ROS RS400, RUGGEDCOM ROS RS400 V4.X, RUGGEDCOM ROS RS401, RUGGEDCOM ROS RS401 V4.X, RUGGEDCOM ROS RS416, RUGGEDCOM ROS RS416Pv2 V4. X, RUGGEDCOM ROS RS416Pv2 V5.X, RUGGEDCOM ROS RS416v2, RUGGEDCOM ROS RS416v2 V4.X, RUGGEDCOM ROS RS416v2 V5.X, RUGGEDCOM ROS RS8000, RUGGEDCOM ROS RS8000 V4. X, RUGGEDCOM ROS RS8000A, RUGGEDCOM ROS RS8000A V4.X, RUGGEDCOM ROS RS8000H, RUGGEDCOM ROS RS8000H V4.X, RUGGEDCOM ROS RS8000T, RUGGEDCOM ROS RS8000T V4.X, RUGGEDCOM ROS RS900 (32M), RUGGEDCOM ROS RS900 (32M) V4. X, RUGGEDCOM ROS RS900 (32M) V5.X, RUGGEDCOM ROS RS900 V4.X, RUGGEDCOM ROS RS900G, RUGGEDCOM ROS RS900G (32M), RUGGEDCOM ROS RS900G (32M) V4.X, RUGGEDCOM ROS RS900G (32M) V5. X, RUGGEDCOM ROS RS900G V4.X, RUGGEDCOM ROS RS900GP, RUGGEDCOM ROS RS900GP V4.X, RUGGEDCOM ROS RS900L, RUGGEDCOM ROS RS900L V4.X, RUGGEDCOM ROS RS900M V4.X, RUGGEDCOM ROS RS900W, RUGGEDCOM ROS RS900W V4. X, RUGGEDCOM ROS RS910, RUGGEDCOM ROS RS910 V4.X, RUGGEDCOM ROS RS910L, RUGGEDCOM ROS RS910L V4.X, RUGGEDCOM ROS RS910W, RUGGEDCOM ROS RS910W V4.X, RUGGEDCOM ROS RS920L, RUGGEDCOM ROS RS920L V4. X, RUGGEDCOM ROS RS920W, RUGGEDCOM ROS RS920W V4.X, RUGGEDCOM ROS RS930L, RUGGEDCOM ROS RS930L V4.X, RUGGEDCOM ROS RS930W, RUGGEDCOM ROS RS930W V4.X, RUGGEDCOM ROS RS940G, RUGGEDCOM ROS RS940G V4. X, RUGGEDCOM ROS RS969, RUGGEDCOM ROS RSG2100, RUGGEDCOM ROS RSG2100 (32M), RUGGEDCOM ROS RSG2100 (32M) V4.X, RUGGEDCOM ROS RSG2100 (32M) V5.X, RUGGEDCOM ROS RSG2100 V4. X, RUGGEDCOM ROS RSG2100P, RUGGEDCOM ROS RSG2100P V4.X, RUGGEDCOM ROS RSG2200, RUGGEDCOM ROS RSG2200 V4.X, RUGGEDCOM ROS RSG2288, RUGGEDCOM ROS RSG2288 V4.X, RUGGEDCOM ROS RSG2288 V5. X, RUGGEDCOM ROS RSG2300, RUGGEDCOM ROS RSG2300 V4.X, RUGGEDCOM ROS RSG2300 V5.X, RUGGEDCOM ROS RSG2300P, RUGGEDCOM ROS RSG2300P V4.X, RUGGEDCOM ROS RSG2300P V5.X, RUGGEDCOM ROS RSG2488, RUGGEDCOM ROS RSG2488 V4. X, RUGGEDCOM ROS RSG2488 V5.X, RUGGEDCOM ROS RSG907R, RUGGEDCOM ROS RSG907R V5.X, RUGGEDCOM ROS RSG908C, RUGGEDCOM ROS RSG908C V5.X, RUGGEDCOM ROS RSG909R, RUGGEDCOM ROS RSG909R V5. X, RUGGEDCOM ROS RSG910C, RUGGEDCOM ROS RSG910C V5.X, RUGGEDCOM ROS RSG920P, RUGGEDCOM ROS RSG920P V4.X, RUGGEDCOM ROS RSG920P V5.X, RUGGEDCOM ROS RSL910, RUGGEDCOM ROS RSL910 V5. X, RUGGEDCOM ROS RST2228, RUGGEDCOM ROS RST2228 V5.X, RUGGEDCOM ROS RST2228P, RUGGEDCOM ROS RST2228P V5.X, RUGGEDCOM ROS RST916C, RUGGEDCOM ROS RST916C V5.X, RUGGEDCOM ROS RST916P, RUGGEDCOM ROS RST916P V5. X, RUGGEDCOM ROS i800, RUGGEDCOM ROS i800 V4.X, RUGGEDCOM ROS i801, RUGGEDCOM ROS i801 V4.X, RUGGEDCOM ROS i802, RUGGEDCOM ROS i802 V4.X, RUGGEDCOM ROS i803, RUGGEDCOM ROS i803 V4.X. El servidor SSH de los dispositivos afectados est\u00e1 configurado para ofrecer cifrados d\u00e9biles por defecto. Esto podr\u00eda permitir a un atacante no autorizado en una posici\u00f3n de hombre en el medio leer y modificar cualquier dato que se pase por la conexi\u00f3n entre clientes leg\u00edtimos y el dispositivo afectado"}], "id": "CVE-2021-37209", "lastModified": "2024-11-21T06:14:52.180", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "NONE", "baseScore": 4.0, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:S/C:P/I:N/A:N", "version": "2.0"}, "exploitabilityScore": 8.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "HIGH", "attackVector": "ADJACENT_NETWORK", "availabilityImpact": "HIGH", "baseScore": 6.7, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:A/AC:H/PR:N/UI:R/S:U/C:L/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 1.2, "impactScore": 5.5, "source": "productcert@siemens.com", "type": "Secondary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 6.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Secondary"}]}, "published": "2022-03-08T12:15:10.330", "references": [{"source": "productcert@siemens.com", "tags": ["Vendor Advisory"], "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-764417.pdf"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-764417.pdf"}], "sourceIdentifier": "productcert@siemens.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-326"}], "source": "productcert@siemens.com", "type": "Secondary"}, {"description": [{"lang": "en", "value": "CWE-311"}], "source": "nvd@nist.gov", "type": "Secondary"}]}

{}