RuggedCom RuggedOS Web-Based Admin Interface Default Credentials

critical Nessus Plugin ID 59528

Synopsis

The remote device is running a web-based admin interface with default login credentials.

Description

The remote RuggedCom RuggedOS (ROS) device is running a web-based interface that allows login using default credentials.

Solution

Change passwords for default accounts.

Plugin Details

Severity: Critical

ID: 59528

File Name: scada_ruggedos_default_accounts_http.nbin

Version: 1.100

Type: remote

Family: SCADA

Published: 6/15/2012

Updated: 8/2/2022

Configuration: Enable thorough checks

Risk Information

CVSS v2

Risk Factor: Critical

Base Score: 10

Temporal Score: 10

Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

Temporal Vector: E:H/RL:ND/RC:ND

Vulnerability Information

CPE: cpe:/o:siemens:ruggedcom_rugged_operating_system

Required KB Items: www/scada_ruggedos

Excluded KB Items: global_settings/supplied_logins_only

Exploit Available: true

Exploit Ease: No exploit is required