Unrated severityNVD Advisory· Published Dec 23, 2012· Updated Jun 16, 2026
CVE-2012-4698
CVE-2012-4698
Description
Siemens RuggedCom Rugged Operating System (ROS) before 3.12, ROX I OS through 1.14.5, ROX II OS through 2.3.0, and RuggedMax OS through 4.2.1.4621.22 use hardcoded private keys for SSL and SSH communication, which makes it easier for man-in-the-middle attackers to spoof servers and decrypt network traffic by leveraging the availability of these keys within ROS files at all customer installations.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
8cpe:2.3:o:siemens:rox_ii_os:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:siemens:rox_ii_os:*:*:*:*:*:*:*:*range: <=2.3.0
- (no CPE)range: <=2.3.0
cpe:2.3:o:siemens:rox_i_os:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:siemens:rox_i_os:*:*:*:*:*:*:*:*range: <=1.14.5
- (no CPE)range: <=1.14.5
cpe:2.3:o:siemens:ruggedmax_os:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:siemens:ruggedmax_os:*:*:*:*:*:*:*:*range: <=4.2.1.4621.22
- (no CPE)range: <=4.2.1.4621.22
- Range: <3.12
Patches
Vulnerability mechanics
References
4- www.ruggedcom.com/productbulletin/ros-security-page/nvdVendor Advisory
- www.siemens.com/corporate-technology/pool/de/forschungsfelder/siemens_security_advisory_ssa-622607.pdfnvdVendor Advisory
- www.us-cert.gov/control_systems/pdf/ICSA-12-354-01.pdfnvdUS Government Resource
- ics-cert.us-cert.gov/advisories/ICSA-12-354-01Anvd
News mentions
0No linked articles in our index yet.