ID

VAR-202605-0892


CVE

CVE-2025-40948


TITLE

Siemens' RUGGEDCOM ROX MX5000  Vulnerabilities related to argument insertion or modification in multiple products, such as firmware

Trust: 0.8

sources: JVNDB: JVNDB-2026-021629

DESCRIPTION

A vulnerability has been identified in RUGGEDCOM ROX MX5000 (All versions < V2.17.1), RUGGEDCOM ROX MX5000RE (All versions < V2.17.1), RUGGEDCOM ROX RX1400 (All versions < V2.17.1), RUGGEDCOM ROX RX1500 (All versions < V2.17.1), RUGGEDCOM ROX RX1501 (All versions < V2.17.1), RUGGEDCOM ROX RX1510 (All versions < V2.17.1), RUGGEDCOM ROX RX1511 (All versions < V2.17.1), RUGGEDCOM ROX RX1512 (All versions < V2.17.1), RUGGEDCOM ROX RX1524 (All versions < V2.17.1), RUGGEDCOM ROX RX1536 (All versions < V2.17.1), RUGGEDCOM ROX RX5000 (All versions < V2.17.1). Affected devices do not properly validate input in the web server's JSON-RPC interface. This could allow an authenticated remote attacker to read arbitrary files from the underlying operating system's filesystem with root privileges. root It will become possible to read it based on the permissions.- All information handled by the software may be leaked to external parties. - No rewriting will occur to the information handled by the software. - The software will not stop

Trust: 1.62

sources: NVD: CVE-2025-40948 // JVNDB: JVNDB-2026-021629

AFFECTED PRODUCTS

vendor:siemensmodel:ruggedcom rox rx1510scope:ltversion:2.17.1

Trust: 1.0

vendor:siemensmodel:ruggedcom rox mx5000scope:ltversion:2.17.1

Trust: 1.0

vendor:siemensmodel:ruggedcom rox rx1501scope:ltversion:2.17.1

Trust: 1.0

vendor:siemensmodel:ruggedcom rox rx1400scope:ltversion:2.17.1

Trust: 1.0

vendor:siemensmodel:ruggedcom rox rx1500scope:ltversion:2.17.1

Trust: 1.0

vendor:siemensmodel:ruggedcom rox rx1536scope:ltversion:2.17.1

Trust: 1.0

vendor:siemensmodel:ruggedcom rox rx1511scope:ltversion:2.17.1

Trust: 1.0

vendor:siemensmodel:ruggedcom rox rx1524scope:ltversion:2.17.1

Trust: 1.0

vendor:siemensmodel:ruggedcom rox rx1512scope:ltversion:2.17.1

Trust: 1.0

vendor:siemensmodel:ruggedcom rox rx5000scope:ltversion:2.17.1

Trust: 1.0

vendor:siemensmodel:ruggedcom rox mx5000rescope:ltversion:2.17.1

Trust: 1.0

vendor:シーメンスmodel:ruggedcom rox rx1501scope: - version: -

Trust: 0.8

vendor:シーメンスmodel:ruggedcom rox rx1524scope: - version: -

Trust: 0.8

vendor:シーメンスmodel:ruggedcom rox rx1510scope: - version: -

Trust: 0.8

vendor:シーメンスmodel:ruggedcom rox rx5000scope: - version: -

Trust: 0.8

vendor:シーメンスmodel:ruggedcom rox rx1512scope: - version: -

Trust: 0.8

vendor:シーメンスmodel:ruggedcom rox mx5000scope: - version: -

Trust: 0.8

vendor:シーメンスmodel:ruggedcom rox rx1500scope: - version: -

Trust: 0.8

vendor:シーメンスmodel:ruggedcom rox rx1511scope: - version: -

Trust: 0.8

vendor:シーメンスmodel:ruggedcom rox rx1536scope: - version: -

Trust: 0.8

vendor:シーメンスmodel:ruggedcom rox rx1400scope: - version: -

Trust: 0.8

vendor:シーメンスmodel:ruggedcom rox mx5000rescope: - version: -

Trust: 0.8

sources: JVNDB: JVNDB-2026-021629 // NVD: CVE-2025-40948

CVSS

SEVERITY

CVSSV2

CVSSV3

productcert@siemens.com: CVE-2025-40948
value: MEDIUM

Trust: 1.0

OTHER: JVNDB-2026-021629
value: MEDIUM

Trust: 0.8

productcert@siemens.com: CVE-2025-40948
baseSeverity: MEDIUM
baseScore: 6.8
vectorString: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N
attackVector: NETWORK
attackComplexity: LOW
privilegesRequired: HIGH
userInteraction: NONE
scope: CHANGED
confidentialityImpact: HIGH
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 2.3
impactScore: 4.0
version: 3.1

Trust: 1.0

OTHER: JVNDB-2026-021629
baseSeverity: MEDIUM
baseScore: 6.8
vectorString: CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N
attackVector: NETWORK
attackComplexity: LOW
privilegesRequired: HIGH
userInteraction: NONE
scope: CHANGED
confidentialityImpact: HIGH
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: NONE
impactScore: NONE
version: 3.0

Trust: 0.8

sources: JVNDB: JVNDB-2026-021629 // NVD: CVE-2025-40948

PROBLEMTYPE DATA

problemtype:CWE-88

Trust: 1.0

problemtype:Insert or change arguments (CWE-88) [ others ]

Trust: 0.8

sources: JVNDB: JVNDB-2026-021629 // NVD: CVE-2025-40948

PATCH

title:SSA-973901url:https://cert-portal.siemens.com/productcert/html/ssa-973901.html

Trust: 0.8

sources: JVNDB: JVNDB-2026-021629

EXTERNAL IDS

db:NVDid:CVE-2025-40948

Trust: 2.6

db:SIEMENSid:SSA-973901

Trust: 1.0

db:JVNDBid:JVNDB-2026-021629

Trust: 0.8

sources: JVNDB: JVNDB-2026-021629 // NVD: CVE-2025-40948

REFERENCES

url:https://cert-portal.siemens.com/productcert/html/ssa-973901.html

Trust: 1.0

url:https://nvd.nist.gov/vuln/detail/cve-2025-40948

Trust: 0.8

sources: JVNDB: JVNDB-2026-021629 // NVD: CVE-2025-40948

SOURCES

db:JVNDBid:JVNDB-2026-021629
db:NVDid:CVE-2025-40948

LAST UPDATE DATE

2026-07-04T23:46:34.718000+00:00


SOURCES UPDATE DATE

db:JVNDBid:JVNDB-2026-021629date:2026-06-30T02:23:00
db:NVDid:CVE-2025-40948date:2026-06-29T14:08:43.643

SOURCES RELEASE DATE

db:JVNDBid:JVNDB-2026-021629date:2026-06-30T00:00:00
db:NVDid:CVE-2025-40948date:2026-05-12T10:16:43.203