Unrated severityNVD Advisory· Published Dec 9, 2025· Updated Jan 13, 2026

CVE-2024-56840

Description

A vulnerability has been identified in RUGGEDCOM ROX MX5000 (All versions < V2.17.0), RUGGEDCOM ROX MX5000RE (All versions < V2.17.0), RUGGEDCOM ROX RX1400 (All versions < V2.17.0), RUGGEDCOM ROX RX1500 (All versions < V2.17.0), RUGGEDCOM ROX RX1501 (All versions < V2.17.0), RUGGEDCOM ROX RX1510 (All versions < V2.17.0), RUGGEDCOM ROX RX1511 (All versions < V2.17.0), RUGGEDCOM ROX RX1512 (All versions < V2.17.0), RUGGEDCOM ROX RX1524 (All versions < V2.17.0), RUGGEDCOM ROX RX1536 (All versions < V2.17.0), RUGGEDCOM ROX RX5000 (All versions < V2.17.0). Under certain conditions, IPsec may allow code injection in the affected device. An attacker could leverage this scenario to execute arbitrary code as root user.

Affected products

Siemens Foundation/Ruggedcom Rox Illm-fuzzy
Range: < V2.17.0
Siemens Foundation/ROX MX5000REllm-fuzzy
Range: < V2.17.0
Siemens/RUGGEDCOM ROX MX5000v5
Range: 0
Siemens/RUGGEDCOM ROX MX5000REv5
Range: 0
Siemens/RUGGEDCOM ROX RX1400v5
Range: 0
Siemens/RUGGEDCOM ROX RX1500v5
Range: 0
Siemens/RUGGEDCOM ROX RX1501v5
Range: 0
Siemens/RUGGEDCOM ROX RX1510v5
Range: 0
Siemens/RUGGEDCOM ROX RX1511v5
Range: 0
Siemens/RUGGEDCOM ROX RX1512v5
Range: 0
Siemens/RUGGEDCOM ROX RX1524v5
Range: 0
Siemens/RUGGEDCOM ROX RX1536v5
Range: 0
Siemens/RUGGEDCOM ROX RX5000v5
Range: 0

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

cert-portal.siemens.com/productcert/html/ssa-912274.htmlmitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000