๐Ÿ” CVE Alert

CVE-2025-40947

HIGH 7.5
CVSS Score
7.5
EPSS Score
0.0%
EPSS Percentile
0th

A vulnerability has been identified in RUGGEDCOM ROX MX5000 (All versions < V2.17.1), RUGGEDCOM ROX MX5000RE (All versions < V2.17.1), RUGGEDCOM ROX RX1400 (All versions < V2.17.1), RUGGEDCOM ROX RX1500 (All versions < V2.17.1), RUGGEDCOM ROX RX1501 (All versions < V2.17.1), RUGGEDCOM ROX RX1510 (All versions < V2.17.1), RUGGEDCOM ROX RX1511 (All versions < V2.17.1), RUGGEDCOM ROX RX1512 (All versions < V2.17.1), RUGGEDCOM ROX RX1524 (All versions < V2.17.1), RUGGEDCOM ROX RX1536 (All versions < V2.17.1), RUGGEDCOM ROX RX5000 (All versions < V2.17.1). Affected devices do not properly sanitize user-supplied input during the feature key installation process. This could allow an authenticated remote attacker to inject arbitrary commands, resulting in remote code execution with root privileges on the underlying operating system.

CWE CWE-78
Vendor siemens
Product ruggedcom rox mx5000
Ecosystems
Industries
IndustrialManufacturing
Published May 12, 2026
Last Updated May 12, 2026
Stay Ahead of the Next One

Get instant alerts for siemens ruggedcom rox mx5000

Be the first to know when new high vulnerabilities affecting siemens ruggedcom rox mx5000 are published โ€” delivered to Slack, Telegram or Discord.

Get Free Alerts โ†’ Free ยท No credit card ยท 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability

Affected Versions

Siemens / RUGGEDCOM ROX MX5000
0 < V2.17.1
Siemens / RUGGEDCOM ROX MX5000RE
0 < V2.17.1
Siemens / RUGGEDCOM ROX RX1400
0 < V2.17.1
Siemens / RUGGEDCOM ROX RX1500
0 < V2.17.1
Siemens / RUGGEDCOM ROX RX1501
0 < V2.17.1
Siemens / RUGGEDCOM ROX RX1510
0 < V2.17.1
Siemens / RUGGEDCOM ROX RX1511
0 < V2.17.1
Siemens / RUGGEDCOM ROX RX1512
0 < V2.17.1
Siemens / RUGGEDCOM ROX RX1524
0 < V2.17.1
Siemens / RUGGEDCOM ROX RX1536
0 < V2.17.1
Siemens / RUGGEDCOM ROX RX5000
0 < V2.17.1

References

NVD โ†— CVE.org โ†— EPSS Data โ†—
cert-portal.siemens.com: https://cert-portal.siemens.com/productcert/html/ssa-078743.html