216.73.217.86

CVE-2025-40948

· Published 12/05/2026 10:16 · Modified 12/05/2026 14:19

Labels: CVE-2025-40948 2026-05-12CVE-2025-40948CWE-88[email protected]

Essential information

Published
12/05/2026 10:16
Modified
12/05/2026 14:19
Author
Creator
CVSS
6.1 MEDIUM (v3) 6.1 MEDIUM (v4.0)
CISA KEV
No
CWE
CVSS vector

CVSS metrics

Description

A vulnerability has been identified in RUGGEDCOM ROX MX5000 (All versions < V2.17.1), RUGGEDCOM ROX MX5000RE (All versions < V2.17.1), RUGGEDCOM ROX RX1400 (All versions < V2.17.1), RUGGEDCOM ROX RX1500 (All versions < V2.17.1), RUGGEDCOM ROX RX1501 (All versions < V2.17.1), RUGGEDCOM ROX RX1510 (All versions < V2.17.1), RUGGEDCOM ROX RX1511 (All versions < V2.17.1), RUGGEDCOM ROX RX1512 (All versions < V2.17.1), RUGGEDCOM ROX RX1524 (All versions < V2.17.1), RUGGEDCOM ROX RX1536 (All versions < V2.17.1), RUGGEDCOM ROX RX5000 (All versions < V2.17.1). Affected devices do not properly validate input in the web server's JSON-RPC interface. This could allow an authenticated remote attacker to read arbitrary files from the underlying operating system's filesystem with root privileges.

NVD status

Status
Awaiting Analysis — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
siemens / ruggedcom rox mx5000 cpe:2.3:a:siemens:ruggedcom_rox_mx5000:<2.17.1:*:*:*:*:*:*:*
siemens / ruggedcom rox mx5000re cpe:2.3:a:siemens:ruggedcom_rox_mx5000re:<2.17.1:*:*:*:*:*:*:*
siemens / ruggedcom rox rx1400 cpe:2.3:a:siemens:ruggedcom_rox_rx1400:<2.17.1:*:*:*:*:*:*:*
siemens / ruggedcom rox rx1500 cpe:2.3:a:siemens:ruggedcom_rox_rx1500:<2.17.1:*:*:*:*:*:*:*
siemens / ruggedcom rox rx1501 cpe:2.3:a:siemens:ruggedcom_rox_rx1501:<2.17.1:*:*:*:*:*:*:*
siemens / ruggedcom rox rx1510 cpe:2.3:a:siemens:ruggedcom_rox_rx1510:<2.17.1:*:*:*:*:*:*:*
siemens / ruggedcom rox rx1511 cpe:2.3:a:siemens:ruggedcom_rox_rx1511:<2.17.1:*:*:*:*:*:*:*
siemens / ruggedcom rox rx1512 cpe:2.3:a:siemens:ruggedcom_rox_rx1512:<2.17.1:*:*:*:*:*:*:*
siemens / ruggedcom rox rx1524 cpe:2.3:a:siemens:ruggedcom_rox_rx1524:<2.17.1:*:*:*:*:*:*:*
siemens / ruggedcom rox rx1536 cpe:2.3:a:siemens:ruggedcom_rox_rx1536:<2.17.1:*:*:*:*:*:*:*
siemens / ruggedcom rox rx5000 cpe:2.3:a:siemens:ruggedcom_rox_rx5000:<2.17.1:*:*:*:*:*:*:*

References