After initial configuration, the Ruggedcom Discovery Protocol (RCDP) is still able to write to the device under certain conditions. This could allow an attacker located in the adjacent network of the targeted device to perform unauthorized administrative actions.
2017-12-26T04:29:13.643
2025-08-12T12:15:26.210
Deferred
CVSSv3.1: 8.8 (HIGH)
AV:A/AC:L/Au:N/C:P/I:P/A:P
6.5
6.4
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Operating System | siemens | scalance_xb-200_firmware | ≥ 3.0 | Yes |
| Hardware | siemens | scalance_xb-200 | - | No |
| Operating System | siemens | scalance_xc-200_firmware | ≥ 3.0 | Yes |
| Hardware | siemens | scalance_xc-200 | - | No |
| Operating System | siemens | scalance_xp-200_firmware | ≥ 3.0 | Yes |
| Hardware | siemens | scalance_xp-200 | - | No |
| Operating System | siemens | scalance_xr300-wg_firmware | ≥ 3.0 | Yes |
| Hardware | siemens | scalance_xr300-wg | - | No |
| Operating System | siemens | scalance_xr-500_firmware | ≥ 6.1 | Yes |
| Hardware | siemens | scalance_xr-500 | - | No |
| Operating System | siemens | scalance_xm-400_firmware | ≥ 6.1 | Yes |
| Hardware | siemens | scalance_xm-400 | - | No |
| Operating System | siemens | ruggedcom_ros | < 5.0.1 | Yes |
| Hardware | siemens | ruggedcom_rsl910 | - | No |
| Operating System | siemens | ruggedcom_ros | < 4.3.4 | Yes |
| Hardware | siemens | ruggedcom | - | No |