SSA-856721

Siemens Security Advisory by Siemens ProductCERT

SSA-856721: Vulnerability in RUGGEDCOM Discovery Protocol (RCDP) of Industrial Communication Devices

Publication Date:	2017-09-28
Last Update:	2025-08-12
Current Version:	V1.3
CVSS v3.1 Base Score:	8.8

SUMMARY

The RUGGEDCOM RCDP protocol is not properly configured after commissioning of RUGGEDCOM ROS based devices and some SCALANCE X switch models and could allow unauthenticated remote users to perform administrative operations. An attacker must be in the same adjacent network and the RCDP daemon must be enabled in order to exploit the vulnerability.

Siemens has released new versions for the affected products and recommends to update to the latest versions.

KNOWN AFFECTED PRODUCTS

Un-/Collapse All

Affected Product and Versions	Remediation
RUGGEDCOM ROS V4.X family	Show more details
RUGGEDCOM i800 All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM ROS V4.X NC products	Show more details
RUGGEDCOM i800NC All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM i801NC All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM i802NC All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM i803NC All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM M2100NC All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM M2200NC All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM M969NC All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RMC30NC All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RMC8388NC V4.X All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RP110NC All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RS1600FNC All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RS1600NC All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RS1600TNC All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RS400NC All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RS401NC All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RS416NC All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RS416NCv2 V4.X All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RS416PNC All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RS416PNCv2 V4.X All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RS8000ANC All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RS8000HNC All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RS8000NC All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RS8000TNC All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RS900GNC All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RS900GNC(32M) V4.X All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RS900GPNC All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RS900LNC All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RS900MNC-GETS-C01 All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RS900MNC-GETS-XX All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RS900MNC-STND-XX All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RS900MNC-STND-XX-C01 All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RS900NC All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RS900NC(32M) V4.X All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RS910LNC All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RS910NC All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RS920LNC All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RS930LNC All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RS940GNC All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RS969NC All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RSG2100NC All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RSG2100NC(32M) V4.X All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RSG2100PNC All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RSG2100PNC (32M) V4.X All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RSG2200NC All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RSG2288NC V4.X All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RSG2300NC V4.X All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RSG2300PNC V4.X All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RSG2488NC V4.X All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RSG920PNC V4.X All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM i801 All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM i802 All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM i803 All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM M2100 All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM M2200 All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM M969 All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RMC30 All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RMC8388 V4.X All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RP110 All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RS1600 All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RS1600F All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RS1600T All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RS400 All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RS401 All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RS416 All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RS416P All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RS416Pv2 V4.X All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RS416v2 V4.X All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RS8000 All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RS8000A All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RS8000H All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RS8000T All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RS900 All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RS900 (32M) V4.X All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RS900G All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RS900G (32M) V4.X All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RS900GP All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RS900L All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RS900M-GETS-C01 All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RS900M-GETS-XX All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RS900M-STND-C01 All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RS900M-STND-XX All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RS900W All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RS910 All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RS910L All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RS910W All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RS920L All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RS920W All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RS930L All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RS930W All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RS940G All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RS969 All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RSG2100 All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RSG2100 (32M) V4.X All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RSG2100P All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RSG2100P (32M) V4.X All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RSG2200 All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RSG2288 V4.X All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RSG2300 V4.X All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RSG2300P V4.X All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RSG2488 V4.X All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RSG920P V4.X All versions < V4.3.4 affected by CVE-2017-12736	Update to V4.3.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109750773/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM ROS V5.X family	Show more details
RUGGEDCOM RMC8388 V5.X All versions < V5.0.1 affected by CVE-2017-12736	Update to V5.0.1 or later version https://support.industry.siemens.com/cs/ww/en/view/109750772/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM ROS V5.X NC products	Show more details
RUGGEDCOM RMC8388NC V5.X All versions < V5.0.1 affected by CVE-2017-12736	Update to V5.0.1 or later version https://support.industry.siemens.com/cs/ww/en/view/109750772/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RS416NCv2 V5.X All versions < V5.0.1 affected by CVE-2017-12736	Update to V5.0.1 or later version https://support.industry.siemens.com/cs/ww/en/view/109750772/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RS416PNCv2 V5.X All versions < V5.0.1 affected by CVE-2017-12736	Update to V5.0.1 or later version https://support.industry.siemens.com/cs/ww/en/view/109750772/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RS900GNC(32M) V5.X All versions < V5.0.1 affected by CVE-2017-12736	Update to V5.0.1 or later version https://support.industry.siemens.com/cs/ww/en/view/109750772/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RS900NC(32M) V5.X All versions < V5.0.1 affected by CVE-2017-12736	Update to V5.0.1 or later version https://support.industry.siemens.com/cs/ww/en/view/109750772/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RSG2100NC(32M) V5.X All versions < V5.0.1 affected by CVE-2017-12736	Update to V5.0.1 or later version https://support.industry.siemens.com/cs/ww/en/view/109750772/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RSG2100PNC (32M) V5.X All versions < V5.0.1 affected by CVE-2017-12736	Update to V5.0.1 or later version https://support.industry.siemens.com/cs/ww/en/view/109750772/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RSG2288NC V5.X All versions < V5.0.1 affected by CVE-2017-12736	Update to V5.0.1 or later version https://support.industry.siemens.com/cs/ww/en/view/109750772/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RSG2300NC V5.X All versions < V5.0.1 affected by CVE-2017-12736	Update to V5.0.1 or later version https://support.industry.siemens.com/cs/ww/en/view/109750772/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RSG2300PNC V5.X All versions < V5.0.1 affected by CVE-2017-12736	Update to V5.0.1 or later version https://support.industry.siemens.com/cs/ww/en/view/109750772/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RSG2488NC V5.X All versions < V5.0.1 affected by CVE-2017-12736	Update to V5.0.1 or later version https://support.industry.siemens.com/cs/ww/en/view/109750772/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RSG920PNC V5.X All versions < V5.0.1 affected by CVE-2017-12736	Update to V5.0.1 or later version https://support.industry.siemens.com/cs/ww/en/view/109750772/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RSL910NC All versions < V5.0.1 affected by CVE-2017-12736	Update to V5.0.1 or later version https://support.industry.siemens.com/cs/ww/en/view/109750772/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RS416Pv2 V5.X All versions < V5.0.1 affected by CVE-2017-12736	Update to V5.0.1 or later version https://support.industry.siemens.com/cs/ww/en/view/109750772/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RS416v2 V5.X All versions < V5.0.1 affected by CVE-2017-12736	Update to V5.0.1 or later version https://support.industry.siemens.com/cs/ww/en/view/109750772/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RS900 (32M) V5.X All versions < V5.0.1 affected by CVE-2017-12736	Update to V5.0.1 or later version https://support.industry.siemens.com/cs/ww/en/view/109750772/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RS900G (32M) V5.X All versions < V5.0.1 affected by CVE-2017-12736	Update to V5.0.1 or later version https://support.industry.siemens.com/cs/ww/en/view/109750772/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RSG2100 (32M) V5.X All versions < V5.0.1 affected by CVE-2017-12736	Update to V5.0.1 or later version https://support.industry.siemens.com/cs/ww/en/view/109750772/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RSG2100P (32M) V5.X All versions < V5.0.1 affected by CVE-2017-12736	Update to V5.0.1 or later version https://support.industry.siemens.com/cs/ww/en/view/109750772/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RSG2288 V5.X All versions < V5.0.1 affected by CVE-2017-12736	Update to V5.0.1 or later version https://support.industry.siemens.com/cs/ww/en/view/109750772/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RSG2300 V5.X All versions < V5.0.1 affected by CVE-2017-12736	Update to V5.0.1 or later version https://support.industry.siemens.com/cs/ww/en/view/109750772/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RSG2300P V5.X All versions < V5.0.1 affected by CVE-2017-12736	Update to V5.0.1 or later version https://support.industry.siemens.com/cs/ww/en/view/109750772/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RSG2488 V5.X All versions < V5.0.1 affected by CVE-2017-12736	Update to V5.0.1 or later version https://support.industry.siemens.com/cs/ww/en/view/109750772/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RSG907R All versions < V5.0.1 affected by CVE-2017-12736	Update to V5.0.1 or later version https://support.industry.siemens.com/cs/ww/en/view/109750772/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RSG908C All versions < V5.0.1 affected by CVE-2017-12736	Update to V5.0.1 or later version https://support.industry.siemens.com/cs/ww/en/view/109750772/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RSG909R All versions < V5.0.1 affected by CVE-2017-12736	Update to V5.0.1 or later version https://support.industry.siemens.com/cs/ww/en/view/109750772/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RSG910C All versions < V5.0.1 affected by CVE-2017-12736	Update to V5.0.1 or later version https://support.industry.siemens.com/cs/ww/en/view/109750772/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RSG920P V5.X All versions < V5.0.1 affected by CVE-2017-12736	Update to V5.0.1 or later version https://support.industry.siemens.com/cs/ww/en/view/109750772/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RSL910 All versions < V5.0.1 affected by CVE-2017-12736	Update to V5.0.1 or later version https://support.industry.siemens.com/cs/ww/en/view/109750772/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RST2228 All versions < V5.0.1 affected by CVE-2017-12736	Update to V5.0.1 or later version https://support.industry.siemens.com/cs/ww/en/view/109750772/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RST2228P All versions < V5.0.1 affected by CVE-2017-12736	Update to V5.0.1 or later version https://support.industry.siemens.com/cs/ww/en/view/109750772/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RST916C All versions < V5.0.1 affected by CVE-2017-12736	Update to V5.0.1 or later version https://support.industry.siemens.com/cs/ww/en/view/109750772/ See further recommendations from section Workarounds and Mitigations
RUGGEDCOM RST916P All versions < V5.0.1 affected by CVE-2017-12736	Update to V5.0.1 or later version https://support.industry.siemens.com/cs/ww/en/view/109750772/ See further recommendations from section Workarounds and Mitigations
SCALANCE XB-200/XC-200/XP-200/XF-200BA/XR-300WG family	Show more details
SCALANCE XB-200 family	Show more details
SCALANCE XB205-3 (SC, PN) (6GK5205-3BB00-2AB2) All versions >= V3.0 < V3.0.2 affected by CVE-2017-12736	Update to V3.0.2 or later version https://support.industry.siemens.com/cs/ww/en/view/109754174/ See further recommendations from section Workarounds and Mitigations
SCALANCE XB205-3 (ST, E/IP) (6GK5205-3BD00-2TB2) All versions >= V3.0 < V3.0.2 affected by CVE-2017-12736	Update to V3.0.2 or later version https://support.industry.siemens.com/cs/ww/en/view/109754174/ See further recommendations from section Workarounds and Mitigations
SCALANCE XB205-3 (ST, E/IP) (6GK5205-3BB00-2TB2) All versions >= V3.0 < V3.0.2 affected by CVE-2017-12736	Update to V3.0.2 or later version https://support.industry.siemens.com/cs/ww/en/view/109754174/ See further recommendations from section Workarounds and Mitigations
SCALANCE XB205-3 (ST, PN) (6GK5205-3BD00-2AB2) All versions >= V3.0 < V3.0.2 affected by CVE-2017-12736	Update to V3.0.2 or later version https://support.industry.siemens.com/cs/ww/en/view/109754174/ See further recommendations from section Workarounds and Mitigations
SCALANCE XB205-3LD (SC, E/IP) (6GK5205-3BF00-2TB2) All versions >= V3.0 < V3.0.2 affected by CVE-2017-12736	Update to V3.0.2 or later version https://support.industry.siemens.com/cs/ww/en/view/109754174/ See further recommendations from section Workarounds and Mitigations
SCALANCE XB205-3LD (SC, PN) (6GK5205-3BF00-2AB2) All versions >= V3.0 < V3.0.2 affected by CVE-2017-12736	Update to V3.0.2 or later version https://support.industry.siemens.com/cs/ww/en/view/109754174/ See further recommendations from section Workarounds and Mitigations
SCALANCE XB206-2 (SC) (6GK5206-2BD00-2TB2) All versions >= V3.0 < V3.0.2 affected by CVE-2017-12736	Update to V3.0.2 or later version https://support.industry.siemens.com/cs/ww/en/view/109754174/ See further recommendations from section Workarounds and Mitigations
SCALANCE XB206-2 (ST/BFOC) (6GK5206-2BF00-2TB2) All versions >= V3.0 < V3.0.2 affected by CVE-2017-12736	Update to V3.0.2 or later version https://support.industry.siemens.com/cs/ww/en/view/109754174/ See further recommendations from section Workarounds and Mitigations
SCALANCE XB206-2 LD (6GK5206-2BF00-2AB2) All versions >= V3.0 < V3.0.2 affected by CVE-2017-12736	Update to V3.0.2 or later version https://support.industry.siemens.com/cs/ww/en/view/109754174/ See further recommendations from section Workarounds and Mitigations
SCALANCE XB206-2 SC (6GK5206-2BD00-2AB2) All versions >= V3.0 < V3.0.2 affected by CVE-2017-12736	Update to V3.0.2 or later version https://support.industry.siemens.com/cs/ww/en/view/109754174/ See further recommendations from section Workarounds and Mitigations
SCALANCE XB206-2 ST (6GK5206-2BB00-2AB2) All versions >= V3.0 < V3.0.2 affected by CVE-2017-12736	Update to V3.0.2 or later version https://support.industry.siemens.com/cs/ww/en/view/109754174/ See further recommendations from section Workarounds and Mitigations
SCALANCE XB206-2LD (6GK5206-2BB00-2TB2) All versions >= V3.0 < V3.0.2 affected by CVE-2017-12736	Update to V3.0.2 or later version https://support.industry.siemens.com/cs/ww/en/view/109754174/ See further recommendations from section Workarounds and Mitigations
SCALANCE XB208 (E/IP) (6GK5208-0BA00-2TB2) All versions >= V3.0 < V3.0.2 affected by CVE-2017-12736	Update to V3.0.2 or later version https://support.industry.siemens.com/cs/ww/en/view/109754174/ See further recommendations from section Workarounds and Mitigations
SCALANCE XB208 (PN) (6GK5208-0BA00-2AB2) All versions >= V3.0 < V3.0.2 affected by CVE-2017-12736	Update to V3.0.2 or later version https://support.industry.siemens.com/cs/ww/en/view/109754174/ See further recommendations from section Workarounds and Mitigations
SCALANCE XB213-3 (SC, E/IP) (6GK5213-3BD00-2TB2) All versions >= V3.0 < V3.0.2 affected by CVE-2017-12736	Update to V3.0.2 or later version https://support.industry.siemens.com/cs/ww/en/view/109754174/ See further recommendations from section Workarounds and Mitigations
SCALANCE XB213-3 (SC, PN) (6GK5213-3BD00-2AB2) All versions >= V3.0 < V3.0.2 affected by CVE-2017-12736	Update to V3.0.2 or later version https://support.industry.siemens.com/cs/ww/en/view/109754174/ See further recommendations from section Workarounds and Mitigations
SCALANCE XB213-3 (ST, E/IP) (6GK5213-3BB00-2TB2) All versions >= V3.0 < V3.0.2 affected by CVE-2017-12736	Update to V3.0.2 or later version https://support.industry.siemens.com/cs/ww/en/view/109754174/ See further recommendations from section Workarounds and Mitigations
SCALANCE XB213-3 (ST, PN) (6GK5213-3BB00-2AB2) All versions >= V3.0 < V3.0.2 affected by CVE-2017-12736	Update to V3.0.2 or later version https://support.industry.siemens.com/cs/ww/en/view/109754174/ See further recommendations from section Workarounds and Mitigations
SCALANCE XB213-3LD (SC, E/IP) (6GK5213-3BF00-2TB2) All versions >= V3.0 < V3.0.2 affected by CVE-2017-12736	Update to V3.0.2 or later version https://support.industry.siemens.com/cs/ww/en/view/109754174/ See further recommendations from section Workarounds and Mitigations
SCALANCE XB213-3LD (SC, PN) (6GK5213-3BF00-2AB2) All versions >= V3.0 < V3.0.2 affected by CVE-2017-12736	Update to V3.0.2 or later version https://support.industry.siemens.com/cs/ww/en/view/109754174/ See further recommendations from section Workarounds and Mitigations
SCALANCE XB216 (E/IP) (6GK5216-0BA00-2TB2) All versions >= V3.0 < V3.0.2 affected by CVE-2017-12736	Update to V3.0.2 or later version https://support.industry.siemens.com/cs/ww/en/view/109754174/ See further recommendations from section Workarounds and Mitigations
SCALANCE XB216 (PN) (6GK5216-0BA00-2AB2) All versions >= V3.0 < V3.0.2 affected by CVE-2017-12736	Update to V3.0.2 or later version https://support.industry.siemens.com/cs/ww/en/view/109754174/ See further recommendations from section Workarounds and Mitigations
SCALANCE XC-200 family	Show more details
SCALANCE XC206-2 (SC) (6GK5206-2BD00-2AC2) All versions >= V3.0 < V3.0.2 affected by CVE-2017-12736	Update to V3.0.2 or later version https://support.industry.siemens.com/cs/ww/en/view/109754174/ See further recommendations from section Workarounds and Mitigations
SCALANCE XC206-2 (ST/BFOC) (6GK5206-2BB00-2AC2) All versions >= V3.0 < V3.0.2 affected by CVE-2017-12736	Update to V3.0.2 or later version https://support.industry.siemens.com/cs/ww/en/view/109754174/ See further recommendations from section Workarounds and Mitigations
SCALANCE XC206-2G PoE (6GK5206-2RS00-2AC2) All versions >= V3.0 < V3.0.2 affected by CVE-2017-12736	Update to V3.0.2 or later version https://support.industry.siemens.com/cs/ww/en/view/109754174/ See further recommendations from section Workarounds and Mitigations
SCALANCE XC206-2G PoE (54 V DC) (6GK5206-2RS00-5AC2) All versions >= V3.0 < V3.0.2 affected by CVE-2017-12736	Update to V3.0.2 or later version https://support.industry.siemens.com/cs/ww/en/view/109754174/ See further recommendations from section Workarounds and Mitigations
SCALANCE XC206-2G PoE EEC (54 V DC) (6GK5206-2RS00-5FC2) All versions >= V3.0 < V3.0.2 affected by CVE-2017-12736	Update to V3.0.2 or later version https://support.industry.siemens.com/cs/ww/en/view/109754174/ See further recommendations from section Workarounds and Mitigations
SCALANCE XC206-2SFP (6GK5206-2BS00-2AC2) All versions >= V3.0 < V3.0.2 affected by CVE-2017-12736	Update to V3.0.2 or later version https://support.industry.siemens.com/cs/ww/en/view/109754174/ See further recommendations from section Workarounds and Mitigations
SCALANCE XC206-2SFP EEC (6GK5206-2BS00-2FC2) All versions >= V3.0 < V3.0.2 affected by CVE-2017-12736	Update to V3.0.2 or later version https://support.industry.siemens.com/cs/ww/en/view/109754174/ See further recommendations from section Workarounds and Mitigations
SCALANCE XC206-2SFP G (6GK5206-2GS00-2AC2) All versions >= V3.0 < V3.0.2 affected by CVE-2017-12736	Update to V3.0.2 or later version https://support.industry.siemens.com/cs/ww/en/view/109754174/ See further recommendations from section Workarounds and Mitigations
SCALANCE XC206-2SFP G (EIP DEF.) (6GK5206-2GS00-2TC2) All versions >= V3.0 < V3.0.2 affected by CVE-2017-12736	Update to V3.0.2 or later version https://support.industry.siemens.com/cs/ww/en/view/109754174/ See further recommendations from section Workarounds and Mitigations
SCALANCE XC206-2SFP G EEC (6GK5206-2GS00-2FC2) All versions >= V3.0 < V3.0.2 affected by CVE-2017-12736	Update to V3.0.2 or later version https://support.industry.siemens.com/cs/ww/en/view/109754174/ See further recommendations from section Workarounds and Mitigations
SCALANCE XC208 (6GK5208-0BA00-2AC2) All versions >= V3.0 < V3.0.2 affected by CVE-2017-12736	Update to V3.0.2 or later version https://support.industry.siemens.com/cs/ww/en/view/109754174/ See further recommendations from section Workarounds and Mitigations
SCALANCE XC208EEC (6GK5208-0BA00-2FC2) All versions >= V3.0 < V3.0.2 affected by CVE-2017-12736	Update to V3.0.2 or later version https://support.industry.siemens.com/cs/ww/en/view/109754174/ See further recommendations from section Workarounds and Mitigations
SCALANCE XC208G (6GK5208-0GA00-2AC2) All versions >= V3.0 < V3.0.2 affected by CVE-2017-12736	Update to V3.0.2 or later version https://support.industry.siemens.com/cs/ww/en/view/109754174/ See further recommendations from section Workarounds and Mitigations
SCALANCE XC208G (EIP def.) (6GK5208-0GA00-2TC2) All versions >= V3.0 < V3.0.2 affected by CVE-2017-12736	Update to V3.0.2 or later version https://support.industry.siemens.com/cs/ww/en/view/109754174/ See further recommendations from section Workarounds and Mitigations
SCALANCE XC208G EEC (6GK5208-0GA00-2FC2) All versions >= V3.0 < V3.0.2 affected by CVE-2017-12736	Update to V3.0.2 or later version https://support.industry.siemens.com/cs/ww/en/view/109754174/ See further recommendations from section Workarounds and Mitigations
SCALANCE XC208G PoE (6GK5208-0RA00-2AC2) All versions >= V3.0 < V3.0.2 affected by CVE-2017-12736	Update to V3.0.2 or later version https://support.industry.siemens.com/cs/ww/en/view/109754174/ See further recommendations from section Workarounds and Mitigations
SCALANCE XC208G PoE (54 V DC) (6GK5208-0RA00-5AC2) All versions >= V3.0 < V3.0.2 affected by CVE-2017-12736	Update to V3.0.2 or later version https://support.industry.siemens.com/cs/ww/en/view/109754174/ See further recommendations from section Workarounds and Mitigations
SCALANCE XC216 (6GK5216-0BA00-2AC2) All versions >= V3.0 < V3.0.2 affected by CVE-2017-12736	Update to V3.0.2 or later version https://support.industry.siemens.com/cs/ww/en/view/109754174/ See further recommendations from section Workarounds and Mitigations
SCALANCE XC216-3G PoE (6GK5216-3RS00-2AC2) All versions >= V3.0 < V3.0.2 affected by CVE-2017-12736	Update to V3.0.2 or later version https://support.industry.siemens.com/cs/ww/en/view/109754174/ See further recommendations from section Workarounds and Mitigations
SCALANCE XC216-3G PoE (54 V DC) (6GK5216-3RS00-5AC2) All versions >= V3.0 < V3.0.2 affected by CVE-2017-12736	Update to V3.0.2 or later version https://support.industry.siemens.com/cs/ww/en/view/109754174/ See further recommendations from section Workarounds and Mitigations
SCALANCE XC216-4C (6GK5216-4BS00-2AC2) All versions >= V3.0 < V3.0.2 affected by CVE-2017-12736	Update to V3.0.2 or later version https://support.industry.siemens.com/cs/ww/en/view/109754174/ See further recommendations from section Workarounds and Mitigations
SCALANCE XC216-4C G (6GK5216-4GS00-2AC2) All versions >= V3.0 < V3.0.2 affected by CVE-2017-12736	Update to V3.0.2 or later version https://support.industry.siemens.com/cs/ww/en/view/109754174/ See further recommendations from section Workarounds and Mitigations
SCALANCE XC216-4C G (EIP Def.) (6GK5216-4GS00-2TC2) All versions >= V3.0 < V3.0.2 affected by CVE-2017-12736	Update to V3.0.2 or later version https://support.industry.siemens.com/cs/ww/en/view/109754174/ See further recommendations from section Workarounds and Mitigations
SCALANCE XC216-4C G EEC (6GK5216-4GS00-2FC2) All versions >= V3.0 < V3.0.2 affected by CVE-2017-12736	Update to V3.0.2 or later version https://support.industry.siemens.com/cs/ww/en/view/109754174/ See further recommendations from section Workarounds and Mitigations
SCALANCE XC216EEC (6GK5216-0BA00-2FC2) All versions >= V3.0 < V3.0.2 affected by CVE-2017-12736	Update to V3.0.2 or later version https://support.industry.siemens.com/cs/ww/en/view/109754174/ See further recommendations from section Workarounds and Mitigations
SCALANCE XC224 (6GK5224-0BA00-2AC2) All versions >= V3.0 < V3.0.2 affected by CVE-2017-12736	Update to V3.0.2 or later version https://support.industry.siemens.com/cs/ww/en/view/109754174/ See further recommendations from section Workarounds and Mitigations
SCALANCE XC224-4C G (6GK5224-4GS00-2AC2) All versions >= V3.0 < V3.0.2 affected by CVE-2017-12736	Update to V3.0.2 or later version https://support.industry.siemens.com/cs/ww/en/view/109754174/ See further recommendations from section Workarounds and Mitigations
SCALANCE XC224-4C G (EIP Def.) (6GK5224-4GS00-2TC2) All versions >= V3.0 < V3.0.2 affected by CVE-2017-12736	Update to V3.0.2 or later version https://support.industry.siemens.com/cs/ww/en/view/109754174/ See further recommendations from section Workarounds and Mitigations
SCALANCE XC224-4C G EEC (6GK5224-4GS00-2FC2) All versions >= V3.0 < V3.0.2 affected by CVE-2017-12736	Update to V3.0.2 or later version https://support.industry.siemens.com/cs/ww/en/view/109754174/ See further recommendations from section Workarounds and Mitigations
SIPLUS NET SCALANCE XC206-2 (6AG1206-2BB00-7AC2) All versions >= V3.0 < V3.0.2 affected by CVE-2017-12736	Update to V3.0.2 or later version https://support.industry.siemens.com/cs/ww/en/view/109754174/ See further recommendations from section Workarounds and Mitigations
SIPLUS NET SCALANCE XC206-2SFP (6AG1206-2BS00-7AC2) All versions >= V3.0 < V3.0.2 affected by CVE-2017-12736	Update to V3.0.2 or later version https://support.industry.siemens.com/cs/ww/en/view/109754174/ See further recommendations from section Workarounds and Mitigations
SIPLUS NET SCALANCE XC208 (6AG1208-0BA00-7AC2) All versions >= V3.0 < V3.0.2 affected by CVE-2017-12736	Update to V3.0.2 or later version https://support.industry.siemens.com/cs/ww/en/view/109754174/ See further recommendations from section Workarounds and Mitigations
SIPLUS NET SCALANCE XC216-4C (6AG1216-4BS00-7AC2) All versions >= V3.0 < V3.0.2 affected by CVE-2017-12736	Update to V3.0.2 or later version https://support.industry.siemens.com/cs/ww/en/view/109754174/ See further recommendations from section Workarounds and Mitigations
SCALANCE XF-200BA family	Show more details
SCALANCE XF204 (6GK5204-0BA00-2GF2) All versions >= V3.0 < V3.0.2 affected by CVE-2017-12736	Update to V3.0.2 or later version https://support.industry.siemens.com/cs/ww/en/view/109754174/ See further recommendations from section Workarounds and Mitigations
SCALANCE XF204 DNA (6GK5204-0BA00-2YF2) All versions >= V3.0 < V3.0.2 affected by CVE-2017-12736	Update to V3.0.2 or later version https://support.industry.siemens.com/cs/ww/en/view/109754174/ See further recommendations from section Workarounds and Mitigations
SCALANCE XF204-2BA (6GK5204-2AA00-2GF2) All versions >= V3.0 < V3.0.2 affected by CVE-2017-12736	Update to V3.0.2 or later version https://support.industry.siemens.com/cs/ww/en/view/109754174/ See further recommendations from section Workarounds and Mitigations
SCALANCE XF204-2BA DNA (6GK5204-2AA00-2YF2) All versions >= V3.0 < V3.0.2 affected by CVE-2017-12736	Update to V3.0.2 or later version https://support.industry.siemens.com/cs/ww/en/view/109754174/ See further recommendations from section Workarounds and Mitigations
SCALANCE XF204G (6GK5204-0GA00-1UF2) All versions >= V3.0 < V3.0.2 affected by CVE-2017-12736	Update to V3.0.2 or later version https://support.industry.siemens.com/cs/ww/en/view/109754174/ See further recommendations from section Workarounds and Mitigations
SCALANCE XP-200 family	Show more details
SCALANCE XP208 (6GK5208-0HA00-2AS6) All versions >= V3.0 < V3.0.2 affected by CVE-2017-12736	Update to V3.0.2 or later version https://support.industry.siemens.com/cs/ww/en/view/109754174/ See further recommendations from section Workarounds and Mitigations
SCALANCE XP208 (6GK5208-0HA10-2AS6) All versions >= V3.0 < V3.0.2 affected by CVE-2017-12736	Update to V3.0.2 or later version https://support.industry.siemens.com/cs/ww/en/view/109754174/ See further recommendations from section Workarounds and Mitigations
SCALANCE XP208 (Ethernet/IP) (6GK5208-0HA00-2TS6) All versions >= V3.0 < V3.0.2 affected by CVE-2017-12736	Update to V3.0.2 or later version https://support.industry.siemens.com/cs/ww/en/view/109754174/ See further recommendations from section Workarounds and Mitigations
SCALANCE XP208EEC (6GK5208-0HA00-2ES6) All versions >= V3.0 < V3.0.2 affected by CVE-2017-12736	Update to V3.0.2 or later version https://support.industry.siemens.com/cs/ww/en/view/109754174/ See further recommendations from section Workarounds and Mitigations
SCALANCE XP208EEC (6GK5208-0HA10-2ES6) All versions >= V3.0 < V3.0.2 affected by CVE-2017-12736	Update to V3.0.2 or later version https://support.industry.siemens.com/cs/ww/en/view/109754174/ See further recommendations from section Workarounds and Mitigations
SCALANCE XP208G (6GK5208-0XA00-2AS6) All versions >= V3.0 < V3.0.2 affected by CVE-2017-12736	Update to V3.0.2 or later version https://support.industry.siemens.com/cs/ww/en/view/109754174/ See further recommendations from section Workarounds and Mitigations
SCALANCE XP208G EEC (6GK5208-0XA00-2ES6) All versions >= V3.0 < V3.0.2 affected by CVE-2017-12736	Update to V3.0.2 or later version https://support.industry.siemens.com/cs/ww/en/view/109754174/ See further recommendations from section Workarounds and Mitigations
SCALANCE XP208G PoE EEC (6GK5208-0YA00-5ES6) All versions >= V3.0 < V3.0.2 affected by CVE-2017-12736	Update to V3.0.2 or later version https://support.industry.siemens.com/cs/ww/en/view/109754174/ See further recommendations from section Workarounds and Mitigations
SCALANCE XP208G PP (6GK5208-0JA00-2AS6) All versions >= V3.0 < V3.0.2 affected by CVE-2017-12736	Update to V3.0.2 or later version https://support.industry.siemens.com/cs/ww/en/view/109754174/ See further recommendations from section Workarounds and Mitigations
SCALANCE XP208PoE EEC (6GK5208-0UA00-5ES6) All versions >= V3.0 < V3.0.2 affected by CVE-2017-12736	Update to V3.0.2 or later version https://support.industry.siemens.com/cs/ww/en/view/109754174/ See further recommendations from section Workarounds and Mitigations
SCALANCE XP208PoE EEC (6GK5208-0UA10-5ES6) All versions >= V3.0 < V3.0.2 affected by CVE-2017-12736	Update to V3.0.2 or later version https://support.industry.siemens.com/cs/ww/en/view/109754174/ See further recommendations from section Workarounds and Mitigations
SCALANCE XP216 (6GK5216-0HA00-2AS6) All versions >= V3.0 < V3.0.2 affected by CVE-2017-12736	Update to V3.0.2 or later version https://support.industry.siemens.com/cs/ww/en/view/109754174/ See further recommendations from section Workarounds and Mitigations
SCALANCE XP216 (Ethernet/IP) (6GK5216-0HA00-2TS6) All versions >= V3.0 < V3.0.2 affected by CVE-2017-12736	Update to V3.0.2 or later version https://support.industry.siemens.com/cs/ww/en/view/109754174/ See further recommendations from section Workarounds and Mitigations
SCALANCE XP216 (V2) (6GK5216-0HA10-2AS6) All versions >= V3.0 < V3.0.2 affected by CVE-2017-12736	Update to V3.0.2 or later version https://support.industry.siemens.com/cs/ww/en/view/109754174/ See further recommendations from section Workarounds and Mitigations
SCALANCE XP216EEC (6GK5216-0HA00-2ES6) All versions >= V3.0 < V3.0.2 affected by CVE-2017-12736	Update to V3.0.2 or later version https://support.industry.siemens.com/cs/ww/en/view/109754174/ See further recommendations from section Workarounds and Mitigations
SCALANCE XP216EEC (V2) (6GK5216-0HA10-2ES6) All versions >= V3.0 < V3.0.2 affected by CVE-2017-12736	Update to V3.0.2 or later version https://support.industry.siemens.com/cs/ww/en/view/109754174/ See further recommendations from section Workarounds and Mitigations
SCALANCE XP216G (6GK5216-0XA00-2AS6) All versions >= V3.0 < V3.0.2 affected by CVE-2017-12736	Update to V3.0.2 or later version https://support.industry.siemens.com/cs/ww/en/view/109754174/ See further recommendations from section Workarounds and Mitigations
SCALANCE XP216G EEC (6GK5216-0XA00-2ES6) All versions >= V3.0 < V3.0.2 affected by CVE-2017-12736	Update to V3.0.2 or later version https://support.industry.siemens.com/cs/ww/en/view/109754174/ See further recommendations from section Workarounds and Mitigations
SCALANCE XP216G PoE EEC (6GK5216-0YA00-5ES6) All versions >= V3.0 < V3.0.2 affected by CVE-2017-12736	Update to V3.0.2 or later version https://support.industry.siemens.com/cs/ww/en/view/109754174/ See further recommendations from section Workarounds and Mitigations
SCALANCE XP216POE EEC (6GK5216-0UA00-5ES6) All versions >= V3.0 < V3.0.2 affected by CVE-2017-12736	Update to V3.0.2 or later version https://support.industry.siemens.com/cs/ww/en/view/109754174/ See further recommendations from section Workarounds and Mitigations
SCALANCE XP216PoE EEC (V2) (6GK5216-0UA10-5ES6) All versions >= V3.0 < V3.0.2 affected by CVE-2017-12736	Update to V3.0.2 or later version https://support.industry.siemens.com/cs/ww/en/view/109754174/ See further recommendations from section Workarounds and Mitigations
SCALANCE XR-300WG family	Show more details
SCALANCE XR324WG (24 x FE, AC 230V) (6GK5324-0BA00-3AR3) All versions >= V3.0 < V3.0.2 affected by CVE-2017-12736	Update to V3.0.2 or later version https://support.industry.siemens.com/cs/ww/en/view/109754174/ See further recommendations from section Workarounds and Mitigations
SCALANCE XR324WG (24 X FE, DC 24V) (6GK5324-0BA00-2AR3) All versions >= V3.0 < V3.0.2 affected by CVE-2017-12736	Update to V3.0.2 or later version https://support.industry.siemens.com/cs/ww/en/view/109754174/ See further recommendations from section Workarounds and Mitigations
SCALANCE XR326-2C PoE WG (6GK5326-2QS00-3AR3) All versions >= V3.0 < V3.0.2 affected by CVE-2017-12736	Update to V3.0.2 or later version https://support.industry.siemens.com/cs/ww/en/view/109754174/ See further recommendations from section Workarounds and Mitigations
SCALANCE XR326-2C PoE WG (without UL) (6GK5326-2QS00-3RR3) All versions >= V3.0 < V3.0.2 affected by CVE-2017-12736	Update to V3.0.2 or later version https://support.industry.siemens.com/cs/ww/en/view/109754174/ See further recommendations from section Workarounds and Mitigations
SCALANCE XR328-4C WG (24XFE, 4XGE, 24V) (6GK5328-4FS00-2AR3) All versions >= V3.0 < V3.0.2 affected by CVE-2017-12736	Update to V3.0.2 or later version https://support.industry.siemens.com/cs/ww/en/view/109754174/ See further recommendations from section Workarounds and Mitigations
SCALANCE XR328-4C WG (24xFE, 4xGE,DC24V) (6GK5328-4FS00-2RR3) All versions >= V3.0 < V3.0.2 affected by CVE-2017-12736	Update to V3.0.2 or later version https://support.industry.siemens.com/cs/ww/en/view/109754174/ See further recommendations from section Workarounds and Mitigations
SCALANCE XR328-4C WG (24xFE,4xGE,AC230V) (6GK5328-4FS00-3AR3) All versions >= V3.0 < V3.0.2 affected by CVE-2017-12736	Update to V3.0.2 or later version https://support.industry.siemens.com/cs/ww/en/view/109754174/ See further recommendations from section Workarounds and Mitigations
SCALANCE XR328-4C WG (24xFE,4xGE,AC230V) (6GK5328-4FS00-3RR3) All versions >= V3.0 < V3.0.2 affected by CVE-2017-12736	Update to V3.0.2 or later version https://support.industry.siemens.com/cs/ww/en/view/109754174/ See further recommendations from section Workarounds and Mitigations
SCALANCE XR328-4C WG (28xGE, AC 230V) (6GK5328-4SS00-3AR3) All versions >= V3.0 < V3.0.2 affected by CVE-2017-12736	Update to V3.0.2 or later version https://support.industry.siemens.com/cs/ww/en/view/109754174/ See further recommendations from section Workarounds and Mitigations
SCALANCE XR328-4C WG (28xGE, DC 24V) (6GK5328-4SS00-2AR3) All versions >= V3.0 < V3.0.2 affected by CVE-2017-12736	Update to V3.0.2 or later version https://support.industry.siemens.com/cs/ww/en/view/109754174/ See further recommendations from section Workarounds and Mitigations
SCALANCE XM-400/XR-500 family	Show more details
SCALANCE XM-400 family	Show more details
SCALANCE XM408-4C (6GK5408-4GP00-2AM2) All versions >= V6.1.0 < V6.1.1 affected by CVE-2017-12736	Update to V6.1.1 or later version https://support.industry.siemens.com/cs/ww/en/view/109755475/ See further recommendations from section Workarounds and Mitigations
SCALANCE XM408-4C (L3 int.) (6GK5408-4GQ00-2AM2) All versions >= V6.1.0 < V6.1.1 affected by CVE-2017-12736	Update to V6.1.1 or later version https://support.industry.siemens.com/cs/ww/en/view/109755475/ See further recommendations from section Workarounds and Mitigations
SCALANCE XM408-8C (6GK5408-8GS00-2AM2) All versions >= V6.1.0 < V6.1.1 affected by CVE-2017-12736	Update to V6.1.1 or later version https://support.industry.siemens.com/cs/ww/en/view/109755475/ See further recommendations from section Workarounds and Mitigations
SCALANCE XM408-8C (L3 int.) (6GK5408-8GR00-2AM2) All versions >= V6.1.0 < V6.1.1 affected by CVE-2017-12736	Update to V6.1.1 or later version https://support.industry.siemens.com/cs/ww/en/view/109755475/ See further recommendations from section Workarounds and Mitigations
SCALANCE XM416-4C (6GK5416-4GS00-2AM2) All versions >= V6.1.0 < V6.1.1 affected by CVE-2017-12736	Update to V6.1.1 or later version https://support.industry.siemens.com/cs/ww/en/view/109755475/ See further recommendations from section Workarounds and Mitigations
SCALANCE XM416-4C (L3 int.) (6GK5416-4GR00-2AM2) All versions >= V6.1.0 < V6.1.1 affected by CVE-2017-12736	Update to V6.1.1 or later version https://support.industry.siemens.com/cs/ww/en/view/109755475/ See further recommendations from section Workarounds and Mitigations
SCALANCE XR-500 family	Show more details
SCALANCE XR524-8C, 1x230V (6GK5524-8GS00-3AR2) All versions >= V6.1.0 < V6.1.1 affected by CVE-2017-12736	Update to V6.1.1 or later version https://support.industry.siemens.com/cs/ww/en/view/109755475/ See further recommendations from section Workarounds and Mitigations
SCALANCE XR524-8C, 1x230V (L3 int.) (6GK5524-8GR00-3AR2) All versions >= V6.1.0 < V6.1.1 affected by CVE-2017-12736	Update to V6.1.1 or later version https://support.industry.siemens.com/cs/ww/en/view/109755475/ See further recommendations from section Workarounds and Mitigations
SCALANCE XR524-8C, 24V (6GK5524-8GS00-2AR2) All versions >= V6.1.0 < V6.1.1 affected by CVE-2017-12736	Update to V6.1.1 or later version https://support.industry.siemens.com/cs/ww/en/view/109755475/ See further recommendations from section Workarounds and Mitigations
SCALANCE XR524-8C, 24V (L3 int.) (6GK5524-8GR00-2AR2) All versions >= V6.1.0 < V6.1.1 affected by CVE-2017-12736	Update to V6.1.1 or later version https://support.industry.siemens.com/cs/ww/en/view/109755475/ See further recommendations from section Workarounds and Mitigations
SCALANCE XR524-8C, 2x230V (6GK5524-8GS00-4AR2) All versions >= V6.1.0 < V6.1.1 affected by CVE-2017-12736	Update to V6.1.1 or later version https://support.industry.siemens.com/cs/ww/en/view/109755475/ See further recommendations from section Workarounds and Mitigations
SCALANCE XR524-8C, 2x230V (L3 int.) (6GK5524-8GR00-4AR2) All versions >= V6.1.0 < V6.1.1 affected by CVE-2017-12736	Update to V6.1.1 or later version https://support.industry.siemens.com/cs/ww/en/view/109755475/ See further recommendations from section Workarounds and Mitigations
SCALANCE XR526-8C, 1x230V (6GK5526-8GS00-3AR2) All versions >= V6.1.0 < V6.1.1 affected by CVE-2017-12736	Update to V6.1.1 or later version https://support.industry.siemens.com/cs/ww/en/view/109755475/ See further recommendations from section Workarounds and Mitigations
SCALANCE XR526-8C, 1x230V (L3 int.) (6GK5526-8GR00-3AR2) All versions >= V6.1.0 < V6.1.1 affected by CVE-2017-12736	Update to V6.1.1 or later version https://support.industry.siemens.com/cs/ww/en/view/109755475/ See further recommendations from section Workarounds and Mitigations
SCALANCE XR526-8C, 24V (6GK5526-8GS00-2AR2) All versions >= V6.1.0 < V6.1.1 affected by CVE-2017-12736	Update to V6.1.1 or later version https://support.industry.siemens.com/cs/ww/en/view/109755475/ See further recommendations from section Workarounds and Mitigations
SCALANCE XR526-8C, 24V (L3 int.) (6GK5526-8GR00-2AR2) All versions >= V6.1.0 < V6.1.1 affected by CVE-2017-12736	Update to V6.1.1 or later version https://support.industry.siemens.com/cs/ww/en/view/109755475/ See further recommendations from section Workarounds and Mitigations
SCALANCE XR526-8C, 2x230V (6GK5526-8GS00-4AR2) All versions >= V6.1.0 < V6.1.1 affected by CVE-2017-12736	Update to V6.1.1 or later version https://support.industry.siemens.com/cs/ww/en/view/109755475/ See further recommendations from section Workarounds and Mitigations
SCALANCE XR526-8C, 2x230V (L3 int.) (6GK5526-8GR00-4AR2) All versions >= V6.1.0 < V6.1.1 affected by CVE-2017-12736	Update to V6.1.1 or later version https://support.industry.siemens.com/cs/ww/en/view/109755475/ See further recommendations from section Workarounds and Mitigations
SCALANCE XR528-6M (6GK5528-0AA00-2AR2) All versions >= V6.1.0 < V6.1.1 affected by CVE-2017-12736	Update to V6.1.1 or later version https://support.industry.siemens.com/cs/ww/en/view/109755475/ See further recommendations from section Workarounds and Mitigations
SCALANCE XR528-6M (2HR2, L3 int.) (6GK5528-0AR00-2HR2) All versions >= V6.1.0 < V6.1.1 affected by CVE-2017-12736	Update to V6.1.1 or later version https://support.industry.siemens.com/cs/ww/en/view/109755475/ See further recommendations from section Workarounds and Mitigations
SCALANCE XR528-6M (2HR2) (6GK5528-0AA00-2HR2) All versions >= V6.1.0 < V6.1.1 affected by CVE-2017-12736	Update to V6.1.1 or later version https://support.industry.siemens.com/cs/ww/en/view/109755475/ See further recommendations from section Workarounds and Mitigations
SCALANCE XR528-6M (L3 int.) (6GK5528-0AR00-2AR2) All versions >= V6.1.0 < V6.1.1 affected by CVE-2017-12736	Update to V6.1.1 or later version https://support.industry.siemens.com/cs/ww/en/view/109755475/ See further recommendations from section Workarounds and Mitigations
SCALANCE XR552-12M (6GK5552-0AA00-2AR2) All versions >= V6.1.0 < V6.1.1 affected by CVE-2017-12736	Update to V6.1.1 or later version https://support.industry.siemens.com/cs/ww/en/view/109755475/ See further recommendations from section Workarounds and Mitigations
SCALANCE XR552-12M (2HR2, L3 int.) (6GK5552-0AR00-2AR2) All versions >= V6.1.0 < V6.1.1 affected by CVE-2017-12736	Update to V6.1.1 or later version https://support.industry.siemens.com/cs/ww/en/view/109755475/ See further recommendations from section Workarounds and Mitigations
SCALANCE XR552-12M (2HR2) (6GK5552-0AA00-2HR2) All versions >= V6.1.0 < V6.1.1 affected by CVE-2017-12736	Update to V6.1.1 or later version https://support.industry.siemens.com/cs/ww/en/view/109755475/ See further recommendations from section Workarounds and Mitigations
SCALANCE XR552-12M (2HR2) (6GK5552-0AR00-2HR2) All versions >= V6.1.0 < V6.1.1 affected by CVE-2017-12736	Update to V6.1.1 or later version https://support.industry.siemens.com/cs/ww/en/view/109755475/ See further recommendations from section Workarounds and Mitigations

WORKAROUNDS AND MITIGATIONS

Siemens has identified the following specific workarounds and mitigations that customers can apply to reduce the risk:

CVE-2017-12736: Manually deactivate RCDP according to the instructions in the user guide. This measure completely mitigates the vulnerability.

Product-specific remediations or mitigations can be found in the section Known Affected Products.
Please follow the General Security Recommendations.

GENERAL SECURITY RECOMMENDATIONS

As a general security measure, Siemens strongly recommends to protect network access to devices with appropriate mechanisms. In order to operate the devices in a protected IT environment, Siemens recommends to configure the environment according to Siemens' operational guidelines for Industrial Security (Download: https://www.siemens.com/cert/operational-guidelines-industrial-security), and to follow the recommendations in the product manuals. Additional information on Industrial Security by Siemens can be found at: https://www.siemens.com/industrialsecurity

PRODUCT DESCRIPTION

RUGGEDCOM ROS-based devices, typically switches and serial-to-Ethernet devices, are used to connect devices that operate in harsh environments such as electric utility substations and traffic control cabinets.

SCALANCE X switches are used to connect industrial components like Programmable Logic Controllers (PLCs) or Human Machine Interfaces (HMIs).

VULNERABILITY DESCRIPTION

Un-/Collapse All

This chapter describes all vulnerabilities (CVE-IDs) addressed in this security advisory. Wherever applicable, it also documents the product-specific impact of the individual vulnerabilities.

Vulnerability CVE-2017-12736

After initial configuration, the Ruggedcom Discovery Protocol (RCDP) is still able to write to the device under certain conditions.

This could allow an attacker located in the adjacent network of the targeted device to perform unauthorized administrative actions.

CVSS v3.1 Base Score	8.8
CVSS v3.1 Vector	CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CWE	CWE-1188: Initialization of a Resource with an Insecure Default

ADDITIONAL INFORMATION

For further inquiries on security vulnerabilities in Siemens products and solutions, please contact the Siemens ProductCERT: https://www.siemens.com/cert/advisories

HISTORY DATA

V1.0 (2017-09-28):	Publication Date
V1.1 (2017-10-09):	Adjusted support team address for Ruggedcom devices
V1.2 (2018-02-22):	Added update information for SCALANCE XR-500/XM-400, and SCALANCE XB-200/XC-200/XP-200/XR300-WG
V1.3 (2025-08-12):	Expanded list of affected product families to individual products; CVE-2017-12736: changed CWE from CWE-20 to CWE-1188

The use of Siemens Security Advisories is subject to the terms and conditions listed on: https://www.siemens.com/productcert/terms-of-use.