CISA 2026-05-14

Siemens Ruggedcom Rox

CVE-2025-40949

Machine-generated analysis · WAYSCloud LLM

This vulnerability allows authenticated attackers to escalate to root command execution via the scheduler. Siemens has released new versions for all affected Ruggedcom Rox products.

Context

Siemens Ruggedcom Rox is a product line of rugged networking devices deployed worldwide in critical manufacturing sectors. The advisory states that improper input sanitization in the Web UI scheduler allows command injection with root privileges. The CVSS v3 score of 9.1 indicates a high severity vulnerability.

Operator considerations

- Check: inventory Ruggedcom Rox devices for versions below 2.17.1
- Patch: update all affected devices to version 2.17.1 or later

From Cybersecurity and Infrastructure Security Agency ↗

Ruggedcom Rox contains an input validation vulnerability in the Scheduler functionality that could allow an authenticated remote attacker to execute arbitrary commands with root privileges on the underlying operating system. Siemens has released new versions for the affected products and recommends to update to the latest versions.

The following versions of Siemens Ruggedcom Rox are affected:

RUGGEDCOM ROX MX5000 vers:intdot/

Read the full advisory on CISA →