RuggedCom ROS Multiple Vulnerabilities

Low RiskICS-CERT ICSA-13-340-01Sep 8, 2013

Summary

RuggedCom devices running ROS firmware prior to version 3.12.2 contain multiple vulnerabilities related to weak random number generation (CWE-330) and improper validation (CWE-592). These cryptographic weaknesses could allow an attacker on the network to compromise the integrity and confidentiality of communications, potentially leading to unauthorized access or manipulation of industrial control functions. No firmware update is available to address these vulnerabilities in affected versions.

What this means

What could happen

An attacker could exploit cryptographic weaknesses in RuggedCom ROS firmware to intercept or manipulate communication, potentially allowing unauthorized access to critical network infrastructure or device controls.

Who's at risk

Water utilities, electric utilities, and other critical infrastructure operators using RuggedCom ROS-based industrial network devices for communications in SCADA systems, remote terminal units (RTUs), or other control network applications should assess their exposure to these cryptographic weaknesses.

How it could be exploited

An attacker on the network could exploit weak random number generation (CWE-330) or improper validation (CWE-592) in the ROS firmware to predict cryptographic keys or bypass authentication mechanisms, gaining unauthorized access to device management interfaces or intercepting sensitive communications.

Prerequisites

Network access to the RuggedCom device
Device running ROS firmware version prior to v3.12.2

no patch availablecryptographic weaknessaffects network-connected control devices

Exploitability

Low exploit probability (EPSS 0.6%)

Affected products (1)

ProductAffected VersionsFix Status

RuggedCom devices with ROS firmware: <v3.12.2<v3.12.2No fix (EOL)

Remediation & Mitigation

0/3

Do now

0/1

WORKAROUNDConsult with Siemens on available compensating controls for devices that cannot be upgraded

Mitigations - no patch available

0/2

RuggedCom devices with ROS firmware: <v3.12.2 has reached End of Life. The vendor will not release a patch. Apply the following compensating controls:

HARDENINGImplement network segmentation and access controls to isolate RuggedCom devices from untrusted networks

HARDENINGMonitor RuggedCom device logs for unauthorized access attempts and unusual communication patterns

CVEs (2)

CVE-2013-6925 CVE-2013-6926

View full CISA ICS-CERT advisory

↑↓ Navigate · Esc Close

API: /api/v1/advisories/d544554f-c777-4bb4-ab87-9e12de127917