VDB
CVE-2024-56840
CVE-2024-56840
PUBLISHED
CVSS 7.199999809265137 HIGH
A vulnerability has been identified in RUGGEDCOM ROX MX5000 (All versions < V2.17.0), RUGGEDCOM ROX MX5000RE (All versions < V2.17.0), RUGGEDCOM ROX RX1400 (All versions < V2.17.0), RUGGEDCOM ROX RX1500 (All versions < V2.17.0), RUGGEDCOM ROX RX1501 (All versions < V2.17.0), RUGGEDCOM ROX RX1510 (All versions < V2.17.0), RUGGEDCOM ROX RX1511 (All versions < V2.17.0), RUGGEDCOM ROX RX1512 (All versions < V2.17.0), RUGGEDCOM ROX RX1524 (All versions < V2.17.0), RUGGEDCOM ROX RX1536 (All versions < V2.17.0), RUGGEDCOM ROX RX5000 (All versions < V2.17.0). Under certain conditions, IPsec may allow code injection in the affected device. An attacker could leverage this scenario to execute arbitrary code as root user.
EPSS 0.03% · 8.4th percentile
Risk Scores
CVSS 3.1
7.199999809265137
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C
EPSS Score
0.03%
8.4th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Siemens | RUGGEDCOM ROX RX1524 | 0 |
| Siemens | RUGGEDCOM ROX RX1511 | 0 |
| Siemens | RUGGEDCOM ROX RX1501 | 0 |
| Siemens | RUGGEDCOM ROX RX1536 | 0 |
| Siemens | RUGGEDCOM ROX RX1510 | 0 |
| Siemens | RUGGEDCOM ROX RX1512 | 0 |
| Siemens | RUGGEDCOM ROX RX1500 | 0 |
| Siemens | RUGGEDCOM ROX RX5000 | 0 |
| Siemens | RUGGEDCOM ROX MX5000 | 0 |
| Siemens | RUGGEDCOM ROX RX1400 | 0 |
| Siemens | RUGGEDCOM ROX MX5000RE | 0 |
| siemens | ruggedcom_rox_ii_firmware | 0 |
Exploit Intelligence
Timeline
- Dec 9, 2025 EPSS Score
- Dec 9, 2025 CVE Published
- Dec 13, 2025 EPSS Score
- Dec 17, 2025 EPSS Score
- Dec 22, 2025 EPSS Score
- Dec 26, 2025 EPSS Score
- Dec 30, 2025 EPSS Score
- Jan 3, 2026 EPSS Score
- Jan 7, 2026 EPSS Score
- Jan 12, 2026 EPSS Score
- Jan 13, 2026 CVE Updated
- Jan 16, 2026 EPSS Score