CVE-2013-6925

Currently unrated

Key Information:

Vendor: Siemens
Status: Ruggedcom Rugged Operating System
Vendor: CVE Published:; 17 December 2013

Summary

The integrated HTTPS server in Siemens RuggedCom ROS before 3.12.2 allows remote attackers to hijack web sessions by predicting a session id value.

References

http://ics-cert.us-cert.gov/advisories/ICSA-13-340-01

x_refsource_MISC

http://www.siemens.com/innovation/pool/de/forschungsfelde...

x_refsource_CONFIRM

Timeline

Vulnerability published
Dec 17, 2013
Vulnerability Reserved
Dec 3, 2013

.