CVE-2025-40949
Summary
| CVE | CVE-2025-40949 |
|---|---|
| State | PUBLISHED |
| Assigner | siemens |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2026-05-12 10:16:43 UTC |
| Updated | 2026-06-29 14:08:26 UTC |
| Description | A vulnerability has been identified in RUGGEDCOM ROX MX5000 (All versions < V2.17.1), RUGGEDCOM ROX MX5000RE (All versions < V2.17.1), RUGGEDCOM ROX RX1400 (All versions < V2.17.1), RUGGEDCOM ROX RX1500 (All versions < V2.17.1), RUGGEDCOM ROX RX1501 (All versions < V2.17.1), RUGGEDCOM ROX RX1510 (All versions < V2.17.1), RUGGEDCOM ROX RX1511 (All versions < V2.17.1), RUGGEDCOM ROX RX1512 (All versions < V2.17.1), RUGGEDCOM ROX RX1524 (All versions < V2.17.1), RUGGEDCOM ROX RX1536 (All versions < V2.17.1), RUGGEDCOM ROX RX5000 (All versions < V2.17.1). Affected devices do not properly sanitize user-supplied input in the Scheduler functionality of the Web UI, allowing commands to be injected into the task scheduling backend. This could allow an authenticated remote attacker to execute arbitrary commands with root privileges on the underlying operating system. |
Risk And Classification
Primary CVSS: v4.0 8.9 HIGH from [email protected]
CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
EPSS: 0.005430000 probability, percentile 0.414410000 (date 2026-06-30)
Problem Types: CWE-78 | CWE-78 CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
| Version | Source | Type | Score | Severity | Vector |
|---|---|---|---|---|---|
| 4.0 | [email protected] | Secondary | 8.9 | HIGH | CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/C... |
| 4.0 | CNA | DECLARED | 8.9 | HIGH | CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H |
| 3.1 | [email protected] | Secondary | 9.1 | CRITICAL | CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H |
| 3.1 | CNA | DECLARED | 9.1 | CRITICAL | CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H |
CVSS v4.0 Breakdown
Attack Vector
NetworkAttack Complexity
LowAttack Requirements
PresentPrivileges Required
HighUser Interaction
NoneConfidentiality
HighIntegrity
HighAvailability
HighSub Conf.
HighSub Integrity
HighSub Availability
HighCVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
CVSS v3.1 Breakdown
Attack Vector
NetworkAttack Complexity
LowPrivileges Required
HighUser Interaction
NoneScope
ChangedConfidentiality
HighIntegrity
HighAvailability
HighCVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Hardware | Siemens | Ruggedcom Rox Mx5000 | - | All | All | All |
| Hardware | Siemens | Ruggedcom Rox Mx5000re | - | All | All | All |
| Operating System | Siemens | Ruggedcom Rox Mx5000re Firmware | All | All | All | All |
| Operating System | Siemens | Ruggedcom Rox Mx5000 Firmware | All | All | All | All |
| Hardware | Siemens | Ruggedcom Rox Rx1400 | - | All | All | All |
| Operating System | Siemens | Ruggedcom Rox Rx1400 Firmware | All | All | All | All |
| Hardware | Siemens | Ruggedcom Rox Rx1500 | - | All | All | All |
| Operating System | Siemens | Ruggedcom Rox Rx1500 Firmware | All | All | All | All |
| Hardware | Siemens | Ruggedcom Rox Rx1501 | - | All | All | All |
| Operating System | Siemens | Ruggedcom Rox Rx1501 Firmware | All | All | All | All |
| Hardware | Siemens | Ruggedcom Rox Rx1510 | - | All | All | All |
| Operating System | Siemens | Ruggedcom Rox Rx1510 Firmware | All | All | All | All |
| Hardware | Siemens | Ruggedcom Rox Rx1511 | - | All | All | All |
| Operating System | Siemens | Ruggedcom Rox Rx1511 Firmware | All | All | All | All |
| Hardware | Siemens | Ruggedcom Rox Rx1512 | - | All | All | All |
| Operating System | Siemens | Ruggedcom Rox Rx1512 Firmware | All | All | All | All |
| Hardware | Siemens | Ruggedcom Rox Rx1524 | - | All | All | All |
| Operating System | Siemens | Ruggedcom Rox Rx1524 Firmware | All | All | All | All |
| Hardware | Siemens | Ruggedcom Rox Rx1536 | - | All | All | All |
| Operating System | Siemens | Ruggedcom Rox Rx1536 Firmware | All | All | All | All |
| Hardware | Siemens | Ruggedcom Rox Rx5000 | - | All | All | All |
| Operating System | Siemens | Ruggedcom Rox Rx5000 Firmware | All | All | All | All |
Vendor Declared Affected Products
| Source | Vendor | Product | Version | Platforms |
|---|---|---|---|---|
| CNA | Siemens | RUGGEDCOM ROX MX5000 | affected V2.17.1 custom | Not specified |
| CNA | Siemens | RUGGEDCOM ROX MX5000RE | affected V2.17.1 custom | Not specified |
| CNA | Siemens | RUGGEDCOM ROX RX1400 | affected V2.17.1 custom | Not specified |
| CNA | Siemens | RUGGEDCOM ROX RX1500 | affected V2.17.1 custom | Not specified |
| CNA | Siemens | RUGGEDCOM ROX RX1501 | affected V2.17.1 custom | Not specified |
| CNA | Siemens | RUGGEDCOM ROX RX1510 | affected V2.17.1 custom | Not specified |
| CNA | Siemens | RUGGEDCOM ROX RX1511 | affected V2.17.1 custom | Not specified |
| CNA | Siemens | RUGGEDCOM ROX RX1512 | affected V2.17.1 custom | Not specified |
| CNA | Siemens | RUGGEDCOM ROX RX1524 | affected V2.17.1 custom | Not specified |
| CNA | Siemens | RUGGEDCOM ROX RX1536 | affected V2.17.1 custom | Not specified |
| CNA | Siemens | RUGGEDCOM ROX RX5000 | affected V2.17.1 custom | Not specified |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| cert-portal.siemens.com/productcert/html/ssa-081142.html | [email protected] | cert-portal.siemens.com | Mitigation, Vendor Advisory |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.