CSRF Vulnerability in Siemens RUGGEDCOM ROX I Web Server

CSRF Vulnerability in Siemens RUGGEDCOM ROX I Web Server

CVE-2017-2688 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

The integrated web server in Siemens RUGGEDCOM ROX I (all versions) at port 10000/TCP could allow remote attackers to perform actions with the privileges of an authenticated user, provided the targeted user has an active session and is induced into clicking on a malicious link or into visiting a malicious website, aka CSRF.

Learn more about our Web App Pen Testing.