Volerion logoVolerion
Volerion logoVolerion

Siemens RUGGEDCOM Products TLS Cipher Suite Vulnerability Allowing Timing Attacks

Vulnerability

A vulnerability exists in multiple RUGGEDCOM products that support the TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 cipher suite, which is susceptible to timing attacks. This vulnerability affects all versions of RUGGEDCOM i800, i801, i802, i803, M2100, M2200, M969, RMC30, RMC8388 V4.X, RMC8388 V5.X (All versions < V5.10.0), RP110, RS1600, RS1600F, RS1600T, RS400, RS401, RS416, RS416P, RS416Pv2 V4.X, RS416Pv2 V5.X (All versions < V5.10.0), RS416v2 V4.X, RS416v2 V5.X (All versions < V5.10.0), RS8000, RS8000A, RS8000H, RS8000T, RS900, RS900 (32M) V4.X, RS900 (32M) V5.X (All versions < V5.10.0), RS900G, RS900G (32M) V4.X, RS900G (32M) V5.X (All versions < V5.10.0), RS900GP, RS900L, RS900M-GETS-C01, RS900M-GETS-XX, RS900M-STND-C01, RS900M-STND-XX, RS900W, RS910, RS910L, RS910W, RS920L, RS920W, RS930L, RS930W, RS940G, RS969, RSG2100, RSG2100 (32M) V4.X, RSG2100 (32M) V5.X (All versions < V5.10.0), RSG2100P, RSG2100P (32M) V4.X, RSG2100P (32M) V5.X (All versions < V5.10.0), RSG2200, RSG2288 V4.X, RSG2288 V5.X (All versions < V5.10.0), RSG2300 V4.X, RSG2300 V5.X (All versions < V5.10.0), RSG2300P V4.X, RSG2300P V5.X (All versions < V5.10.0), RSG2488 V4.X, RSG2488 V5.X (All versions < V5.10.0), RSG907R (All versions < V5.10.0), RSG908C (All versions < V5.10.0), RSG909R (All versions < V5.10.0), RSG910C (All versions < V5.10.0), RSG920P V4.X, RSG920P V5.X (All versions < V5.10.0), RSL910 (All versions < V5.10.0), RST2228 (All versions < V5.10.0), RST2228P (All versions < V5.10.0), RST916C (All versions < V5.10.0), RST916P (All versions < V5.10.0). The vulnerability allows an attacker to compromise the integrity and confidentiality of encrypted communications by exploiting the timing attack vulnerability inherent in the CBC mode of the cipher suite.

Impact

Exploitation of this vulnerability could lead to a timing attack, allowing an attacker to intercept and manipulate encrypted communications, thereby compromising their integrity and confidentiality.

Remediation

Users are advised to update to RUGGEDCOM ROS V5.10.0 or later. For products in the RUGGEDCOM ROS V4.X family, where no fix is currently available, it is recommended to deactivate the SSH server and webserver if not required, and to restrict access to certain ports to trusted IP addresses only. Additionally, for CVE-2025-41223, users should configure the web client to use GCM ciphers.

Added: Jul 8, 2025, 11:21 AM
Updated: Jul 8, 2025, 11:21 AM

Vulnerability Rating

Custom Algorithm
spread
4.5
impact
5.0
exploitability
5.6
remediation
7.7
relevance
0.2
threat
0.0
urgency
2.9
incentive
1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.