CVE-2017-2687

Name of the Vulnerable Software and Affected Versions Siemens RUGGEDCOM ROX I (all versions)

Description The integrated web server at port 10000/TCP is prone to reflected Cross-Site Scripting attacks. This occurs when an unsuspecting user is induced to click on a malicious link.

Recommendations For all versions, consider restricting access to the integrated web server at port 10000/TCP to minimize the risk of exploitation. As a temporary workaround, avoid clicking on suspicious links that may induce a Cross-Site Scripting attack. At the moment, there is no information about a newer version that contains a fix for this vulnerability.