SSA-189842 (Last Update: 2019-12-10): TCP URGENT/11 Vulnerabilities in RUGGEDCOM Win

Published

2019-12-10 00:00:00 UTC

Summary

RUGGEDCOM Win is affected by multiple security vulnerabilities. These vulnerabilities could allow an attacker to leverage various attacks, e.g. to execute arbitrary code over the network.

The vulnerabilities affect the underlying Wind River VxWorks network stack and were recently patched by Wind River.

Siemens is working on updates for the affected products, and recommends specific countermeasures until fixes are available.