{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-22T10:43:50.008","vulnerabilities":[{"cve":{"id":"CVE-2017-12736","sourceIdentifier":"productcert@siemens.com","published":"2017-12-26T04:29:13.643","lastModified":"2025-08-12T12:15:26.210","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"After initial configuration, the Ruggedcom Discovery Protocol (RCDP) is still able to write to the device under certain conditions.\r\n\r\nThis could allow an attacker located in the adjacent network of the targeted device to perform unauthorized administrative actions."},{"lang":"es","value":"Se identificó una vulnerabilidad en RUGGEDCOM ROS para los dispositivos RSL910 (todas las versiones anteriores a ROS V5.0.1), RUGGEDCOM ROS para todos los demás dispositivos (todas las versiones anteriores a ROS V4.3.4), SCALANCE XB-200/XC-200/XP-200/XR300-WG (Todas las versiones entre V3.0 (incluido) y V3.0.2 (excluyendo), SCALANCE XR-500/XM-400 (Todas las versiones entre V6.1 (incluido) y V6.1.1 (excluyendo). Después de la configuración inicial, el Ruggedcom Discovery Protocol (RCDP) aún puede escribir hacia el dispositivo bajo ciertas condiciones, esto potencialmente permite que los usuarios ubicados en la red adyacente del dispositivo destino realicen acciones administrativas no autorizadas."}],"metrics":{"cvssMetricV31":[{"source":"productcert@siemens.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"ADJACENT_NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}],"cvssMetricV30":[{"source":"nvd@nist.gov","type":"Secondary","cvssData":{"version":"3.0","vectorString":"CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"ADJACENT_NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:A/AC:L/Au:N/C:P/I:P/A:P","baseScore":5.8,"accessVector":"ADJACENT_NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"MEDIUM","exploitabilityScore":6.5,"impactScore":6.4,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"productcert@siemens.com","type":"Secondary","description":[{"lang":"en","value":"CWE-1188"}]},{"source":"nvd@nist.gov","type":"Secondary","description":[{"lang":"en","value":"CWE-665"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:siemens:scalance_xb-200_firmware:*:*:*:*:*:*:*:*","versionStartIncluding":"3.0","matchCriteriaId":"DA12DF53-5DB1-4279-9E46-6031258ACE68"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:siemens:scalance_xb-200:-:*:*:*:*:*:*:*","matchCriteriaId":"6CB3CC2D-CBF0-4F53-A412-01BBC39E34C2"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:siemens:scalance_xc-200_firmware:*:*:*:*:*:*:*:*","versionStartIncluding":"3.0","matchCriteriaId":"5501093A-B4A4-4E9C-AE5A-38A012B81E07"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:siemens:scalance_xc-200:-:*:*:*:*:*:*:*","matchCriteriaId":"7719E194-EE3D-4CE8-8C85-CF0D82A553AA"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:siemens:scalance_xp-200_firmware:*:*:*:*:*:*:*:*","versionStartIncluding":"3.0","matchCriteriaId":"6F5B80A4-0EFC-4488-A569-574B942FC7D9"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:siemens:scalance_xp-200:-:*:*:*:*:*:*:*","matchCriteriaId":"8F962FC7-0616-467F-8CCA-ADEA224B5F7B"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:siemens:scalance_xr300-wg_firmware:*:*:*:*:*:*:*:*","versionStartIncluding":"3.0","matchCriteriaId":"0DEF3486-F27F-4FC3-ADE5-A5BCAD477C47"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:siemens:scalance_xr300-wg:-:*:*:*:*:*:*:*","matchCriteriaId":"43C240D0-5169-4800-B336-A2B889475CD6"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:siemens:scalance_xr-500_firmware:*:*:*:*:*:*:*:*","versionStartIncluding":"6.1","matchCriteriaId":"8C6310FD-6DD7-4420-BE94-C791D18CA1E1"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:siemens:scalance_xr-500:-:*:*:*:*:*:*:*","matchCriteriaId":"96EA9D9A-AD86-4983-8FD2-33B1E447D7D1"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:siemens:scalance_xm-400_firmware:*:*:*:*:*:*:*:*","versionStartIncluding":"6.1","matchCriteriaId":"CF503997-A9E6-4722-A774-D3089B3468B3"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:siemens:scalance_xm-400:-:*:*:*:*:*:*:*","matchCriteriaId":"798E900F-5EF9-4B39-B8C2-79FAE659E7F5"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:siemens:ruggedcom_ros:*:*:*:*:*:*:*:*","versionEndExcluding":"5.0.1","matchCriteriaId":"F8AEFEF0-6AA1-4C07-BE94-0FBD7CECA354"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:siemens:ruggedcom_rsl910:-:*:*:*:*:*:*:*","matchCriteriaId":"5F0C8879-659D-4A28-BA72-7BE05B5215CC"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:siemens:ruggedcom_ros:*:*:*:*:*:*:*:*","versionEndExcluding":"4.3.4","matchCriteriaId":"CF1FAD6D-C62C-46CF-A752-E0844A496344"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:siemens:ruggedcom:-:*:*:*:*:*:*:*","matchCriteriaId":"9EABA893-37F5-4877-BC13-3557C654857E"}]}]}],"references":[{"url":"http://www.securityfocus.com/bid/101041","source":"productcert@siemens.com","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1039463","source":"productcert@siemens.com","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1039464","source":"productcert@siemens.com","tags":["Third Party Advisory","VDB Entry"]},{"url":"https://cert-portal.siemens.com/productcert/html/ssa-856721.html","source":"productcert@siemens.com"},{"url":"https://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-856721.pdf","source":"productcert@siemens.com","tags":["Issue Tracking","Mitigation","Vendor Advisory"]},{"url":"http://www.securityfocus.com/bid/101041","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1039463","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1039464","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"https://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-856721.pdf","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Issue Tracking","Mitigation","Vendor Advisory"]}]}}]}