CNNVD-202508-1039 Information
CNNVD ID
CNNVD-202508-1039
Related CVE
- CNNVD Published: 2025-08-12
Description (Chinese)
Siemens RUGGEDCOM ROX RX1511等都是德国西门子(Siemens)公司的产品。Siemens RUGGEDCOM ROX RX1511是一个通信设备。Siemens RUGGEDCOM ROX RX1512是一个通信设备。Siemens RUGGEDCOM ROX RX5000是一个通信设备。 Siemens多款产品存在安全漏洞,该漏洞源于内置自测试模式访问限制不当,可能导致绕过身份验证。以下产品受到影响:RUGGEDCOM ROX MX5000、RUGGEDCOM ROX MX5000RE、RUGGEDCOM ROX RX1400、RUGGEDCOM ROX RX1500、RUGGEDCOM ROX RX1501、RUGGEDCOM ROX RX1510、RUGGEDCOM ROX RX1511、RUGGEDCOM ROX RX1512、RUGGEDCOM ROX RX1524、RUGGEDCOM ROX RX1536和RUGGEDCOM ROX RX5000。
Description (English)
Siemens RUGEDCOM ROX RX1511 and others are products of Siemens Germany. Siemens RUGEDCOM ROX RX1511 is a communications device. Siemens RUGEDCOM ROX RX1512 is a communications device. Siemens RUGEDCOM ROX RX5,000 is a communications device. There is a safety gap in multiple Siemens products, which stems from inappropriate access restrictions that are built into the test mode and may lead to circumvention of identification. The following products were affected: RUGEDCOM ROX MX5000, RUGEDCOM ROX MX5000RE, RUGEDCOM ROX RX1400, RUGEDCOM ROX RX1500, RUGEDCOM ROX RX1501, RUGEDCOM ROX RX1510, RUGEDCOM ROX RX1511, RUGEDCOM ROX1512, RUGGEDCOM ROX RX1524, RUGGEDCOM ROX Rox1536 and RUGEDCOM ROXRX5000.
Hazard Level
Medium
Vulnerability Type
其他
Affected Vendor
西门子
Published
2025-08-12
Last Modified
2026-02-24
References
https://cert-portal.siemens.com/productcert/html/ssa-094954.html https://vigilance.fr/vulnerability/Siemens-RUGGEDCOM-ROX-II-family-privilege-escalation-via-BIST-Mode-47921
Patch
https://cert-portal.siemens.com/productcert/html/ssa-094954.html
Share on: