CNNVD-202508-1029 Information
CNNVD ID
CNNVD-202508-1029
Related CVE
- CNNVD Published: 2025-08-12
Description (Chinese)
Siemens RUGGEDCOM ROX RX1511等都是德国西门子(Siemens)公司的产品。Siemens RUGGEDCOM ROX RX1511是一个通信设备。Siemens RUGGEDCOM ROX RX1512是一个通信设备。Siemens RUGGEDCOM ROX RX5000是一个通信设备。 Siemens多款产品存在代码问题漏洞,该漏洞源于文件上传限制不当,可能导致上传任意文件。以下产品受到影响:RUGGEDCOM ROX MX5000、RUGGEDCOM ROX MX5000RE、RUGGEDCOM ROX RX1400、RUGGEDCOM ROX RX1500、RUGGEDCOM ROX RX1501、RUGGEDCOM ROX RX1510、RUGGEDCOM ROX RX1511、RUGGEDCOM ROX RX1512、RUGGEDCOM ROX RX1524、RUGGEDCOM ROX RX1536和RUGGEDCOM ROX RX5000。
Description (English)
Siemens RUGEDCOM ROX RX1511 and others are products of Siemens Germany. Siemens RUGEDCOM ROX RX1511 is a communications device. Siemens RUGEDCOM ROX RX1512 is a communications device. Siemens RUGEDCOM ROX RX5,000 is a communications device. There is a code gap in multiple Siemens products, which stems from inappropriate document upload restrictions that may lead to the uploading of arbitrary documents. The following products were affected: RUGEDCOM ROX MX5000, RUGEDCOM ROX MX5000RE, RUGEDCOM ROX RX1400, RUGEDCOM ROX RX1500, RUGEDCOM ROX RX1501, RUGEDCOM ROX RX1510, RUGEDCOM ROX RX1511, RUGEDCOM ROX1512, RUGGEDCOM ROX RX1524, RUGGEDCOM ROX Rox1536 and RUGEDCOM ROXRX5000.
Hazard Level
High
Vulnerability Type
代码问题
Affected Vendor
西门子
Published
2025-08-12
Last Modified
2026-02-24
References
https://cert-portal.siemens.com/productcert/html/ssa-665108.html https://vigilance.fr/vulnerability/Siemens-RUGGEDCOM-ROX-II-family-file-creation-via-Upload-47926
Patch
https://cert-portal.siemens.com/productcert/html/ssa-665108.html
Share on: