Siemens RUGGEDCOM ROX MX5000
0 remedies
cpe:2.3:h:siemens:ruggedcom_rox_mx5000:*:*:*:*:*:*:*, +1 more
0 remedies
- < V2.17.1
Siemens Ruggedcom ROX JSON-RPC Interface Arbitrary File Disclosure Vulnerability
Vulnerability
An arbitrary file disclosure vulnerability has been identified in several Ruggedcom ROX products, all versions prior to 2.17.1. The issue arises from improper input validation in the web server's JSON-RPC interface, which could enable an authenticated remote attacker to read arbitrary files from the operating system's filesystem with root privileges.
Impact
Exploitation of this vulnerability could lead to unauthorized access to sensitive files on the device, potentially allowing for further exploitation or manipulation of the system.
Remediation
Siemens has released new versions for the affected products. Users are advised to update to the latest versions. For general security recommendations, Siemens suggests protecting network access to devices with appropriate measures and following the operational guidelines for Industrial Security.
Added: May 12, 2026, 10:34 AM
Updated: May 12, 2026, 10:34 AM
Vulnerability Rating
Custom Algorithm
spread
4.5impact
2.5exploitability
4.9remediation
0.0relevance
8.1threat
0.0urgency
2.9incentive
0.0Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.