Unrated severityNVD Advisory· Published Dec 9, 2025· Updated Jan 13, 2026

CVE-2024-56836

Description

A vulnerability has been identified in RUGGEDCOM ROX MX5000 (All versions < V2.17.0), RUGGEDCOM ROX MX5000RE (All versions < V2.17.0), RUGGEDCOM ROX RX1400 (All versions < V2.17.0), RUGGEDCOM ROX RX1500 (All versions < V2.17.0), RUGGEDCOM ROX RX1501 (All versions < V2.17.0), RUGGEDCOM ROX RX1510 (All versions < V2.17.0), RUGGEDCOM ROX RX1511 (All versions < V2.17.0), RUGGEDCOM ROX RX1512 (All versions < V2.17.0), RUGGEDCOM ROX RX1524 (All versions < V2.17.0), RUGGEDCOM ROX RX1536 (All versions < V2.17.0), RUGGEDCOM ROX RX5000 (All versions < V2.17.0). During the Dynamic DNS configuration of the affected product it is possible to inject additional configuration parameters. Under certain circumstances, an attacker could leverage this vulnerability to spawn a reverse shell and gain root access on the affected system.

Affected products

Siemens Foundation/ROX MX5000llm-create
Range: <V2.17.0
Siemens Foundation/ROX RX1400llm-create
Range: <V2.17.0
Siemens Foundation/ROX MX5000REllm-create
Range: <V2.17.0
Siemens/RUGGEDCOM ROX MX5000v5
Range: 0
Siemens/RUGGEDCOM ROX MX5000REv5
Range: 0
Siemens/RUGGEDCOM ROX RX1400v5
Range: 0
Siemens/RUGGEDCOM ROX RX1500v5
Range: 0
Siemens/RUGGEDCOM ROX RX1501v5
Range: 0
Siemens/RUGGEDCOM ROX RX1510v5
Range: 0
Siemens/RUGGEDCOM ROX RX1511v5
Range: 0
Siemens/RUGGEDCOM ROX RX1512v5
Range: 0
Siemens/RUGGEDCOM ROX RX1524v5
Range: 0
Siemens/RUGGEDCOM ROX RX1536v5
Range: 0
Siemens/RUGGEDCOM ROX RX5000v5
Range: 0

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

cert-portal.siemens.com/productcert/html/ssa-912274.htmlmitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000