12Ara
CVE-2023-49692 | Siemens RUGGEDCOM RM1224 LTE EU prior 7.2.2 IPsec Configuration os command injection (ssa-068047)
A vulnerability has been found in Siemens RUGGEDCOM RM1224 LTE EU, RUGGEDCOM RM1224 LTE NAM, SCALANCE M804PB, SCALANCE M812-1 ADSL-Router, SCALANCE M812-1 ADSL-Router, SCALANCE M816-1 ADSL-Router, SCALANCE M816-1 ADSL-Router, SCALANCE M826-2 SHDSL-Router, SCALANCE M874-2, SCALANCE M874-3, SCALANCE M876-3, SCALANCE M876-3, SCALANCE M876-4, SCALANCE M876-4, SCALANCE M876-4, SCALANCE MUM853-1, SCALANCE MUM856-1, SCALANCE MUM856-1, SCALANCE S615 and SCALANCE S615 EEC and classified as critical. Affected by this vulnerability is an unknown functionality of the component IPsec Configuration Handler. The manipulation leads to os command injection. This vulnerability is known as CVE-2023-49692. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.