Summary
Rugged Operating System is prone to a security-bypass vulnerability.
Impact
An attacker may exploit this issue to bypass certain security restrictions and perform unauthorized actions.
Solution
Updates are available. Please see the references or vendor advisory for more information.
Insight
The security issue is caused due to an error when handling alarms configuration within the web user interface, which can be exploited by guest and operator users to manipulate otherwise inaccessible alarm configuration settings.
Affected
Rugged Operating System prior to 3.12.2 are vulnerable.
Detection
Check the Rugged Operating System version.
References
Updated on 2015-03-25
Severity
Classification
-
CVSS Base Score: 6.5
AV:N/AC:L/Au:S/C:P/I:P/A:P
Related Vulnerabilities
- Apache Traffic Server Remote DNS Cache Poisoning Vulnerability
- Apple Mac OS X Multiple Vulnerabilities - 02 Jan14
- APC PowerChute Business Edition Unspecified Cross Site Scripting Vulnerability
- Adobe Reader Information Disclosure & Denial of Service Vulnerabilities (Windows)
- Apple iTunes Tutorials Window Security Bypass Vulnerability (Mac OS X)