What is the severity of CVE-2015-1357?

CVE-2015-1357 is classified as a medium severity vulnerability that could allow attackers to discover password hashes.

How do I fix CVE-2015-1357?

To mitigate CVE-2015-1357, update the firmware of affected Siemens Ruggedcom devices to versions SS4.4.4624.35 or BS4.4.4621.32 or later.

Which Siemens Ruggedcom devices are affected by CVE-2015-1357?

CVE-2015-1357 affects WIN51xx and WIN52xx devices with firmware before SS4.4.4624.35, and WIN70xx and WIN72xx devices with firmware before BS4.4.4621.32.

Can CVE-2015-1357 lead to unauthorized access?

Yes, CVE-2015-1357 can potentially lead to unauthorized access if attackers successfully retrieve password hashes.

Is there a patch available for CVE-2015-1357?

Yes, Siemens has released firmware updates for the affected devices to address the vulnerability described in CVE-2015-1357.

Vulnerability/
CVE-2015-1357

medium

CWE

200

2/2/2015

6/8/2024

CVE-2015-1357: Infoleak

First published: Mon Feb 02 2015(Updated: )

Siemens Ruggedcom WIN51xx devices with firmware before SS4.4.4624.35, WIN52xx devices with firmware before SS4.4.4624.35, WIN70xx devices with firmware before BS4.4.4621.32, and WIN72xx devices with firmware before BS4.4.4621.32 allow context-dependent attackers to discover password hashes by reading (1) files or (2) security logs.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
Siemens Ruggedcom Firmware	<=bs4.4.4621.31
Siemens Ruggedcom Win7000 Firmware
Siemens Ruggedcom WIN7200 Firmware
Siemens Ruggedcom Firmware	<=ss4.4.4624.34
Siemens RUGGEDCOM WIN5100 series subscriber unit
Siemens RUGGEDCOM WIN5200 series subscriber unit

Never miss a vulnerability like this again

Reference Links

http://www.siemens.com/innovation/pool/de/forschungsfelder/siemens_security_advisory_ssa-753139.pdf

Frequently Asked Questions

What is the severity of CVE-2015-1357?
CVE-2015-1357 is classified as a medium severity vulnerability that could allow attackers to discover password hashes.
How do I fix CVE-2015-1357?
To mitigate CVE-2015-1357, update the firmware of affected Siemens Ruggedcom devices to versions SS4.4.4624.35 or BS4.4.4621.32 or later.
Which Siemens Ruggedcom devices are affected by CVE-2015-1357?
CVE-2015-1357 affects WIN51xx and WIN52xx devices with firmware before SS4.4.4624.35, and WIN70xx and WIN72xx devices with firmware before BS4.4.4621.32.
Can CVE-2015-1357 lead to unauthorized access?
Yes, CVE-2015-1357 can potentially lead to unauthorized access if attackers successfully retrieve password hashes.
Is there a patch available for CVE-2015-1357?
Yes, Siemens has released firmware updates for the affected devices to address the vulnerability described in CVE-2015-1357.

agent/type
collector/mitre-cve
source/MITRE
agent/severity
agent/last-modified-date
agent/author
agent/references
agent/weakness
agent/first-publish-date
agent/event
agent/description
agent/source
agent/softwarecombine
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
vendor/siemens
canonical/siemens ruggedcom firmware
version/siemens ruggedcom firmware/bs4.4.4621.31
canonical/siemens ruggedcom win7000 firmware
canonical/siemens ruggedcom win7200 firmware
version/siemens ruggedcom firmware/ss4.4.4624.34
canonical/siemens ruggedcom win5100 series subscriber unit
canonical/siemens ruggedcom win5200 series subscriber unit

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.