OTPulse

Siemens Ruggedcom Rox

MonitorCVSS 6.8ICS-CERT ICSA-26-134-02May 12, 2026
Siemens
Attack path
Attack VectorNetwork
Auth RequiredHigh
ComplexityLow
User InteractionNone needed
Summary

Ruggedcom Rox devices contain an improper access control vulnerability that allows an authenticated remote attacker to read arbitrary files with root privileges from the operating system filesystem. The vulnerability affects all listed Rox models running firmware versions below 2.17.1. An attacker with valid credentials and network access to the management interface could extract sensitive configuration data, credentials, and system files. Siemens has released firmware version 2.17.1 to address this issue.

What this means
What could happen
An authenticated remote attacker could read arbitrary files on the device with root privileges, potentially exposing sensitive configuration data, credentials, or system files critical to network operations.
Who's at risk
This affects Ruggedcom Rox industrial-grade network switches (MX5000, RX1400, RX1500, RX1501, RX1510, RX1511, RX1512, RX1524, RX1536, RX5000 models) used in critical infrastructure networks including water utilities and power generation facilities for network connectivity and resilience.
How it could be exploited
An attacker with valid administrative credentials and network access to the management interface can exploit improper access controls to read files from the underlying operating system. The attacker could retrieve sensitive files such as configuration backups, encryption keys, or system logs without additional privilege escalation.
Prerequisites
  • Valid administrative credentials for the Ruggedcom Rox device
  • Network access to the device's management interface (typically port 80/443 or SSH)
  • Knowledge of target file paths on the system
Authentication requiredLow CVSS score (6.8)Confidentiality impactRoot-level file accessRequires valid administrative credentials
Exploitability
Unlikely to be exploited — EPSS score 0.1%
Affected products (11)
11 with fix
ProductAffected VersionsFix Status
RUGGEDCOM ROX MX5000< 2.17.12.17.1
RUGGEDCOM ROX MX5000RE< 2.17.12.17.1
RUGGEDCOM ROX RX1400< 2.17.12.17.1
RUGGEDCOM ROX RX1500< 2.17.12.17.1
RUGGEDCOM ROX RX1501< 2.17.12.17.1
RUGGEDCOM ROX RX1510< 2.17.12.17.1
RUGGEDCOM ROX RX1511< 2.17.12.17.1
RUGGEDCOM ROX RX1512< 2.17.12.17.1
Remediation & Mitigation
0/1
Schedule — requires maintenance window
0/1

Patching may require device reboot — plan for process interruption

HOTFIXUpdate all Ruggedcom Rox devices to firmware version 2.17.1 or later
View full CISA ICS-CERT advisory
API: /api/v1/advisories/708c3add-473b-4218-bd21-ac7284344865

Get OT security insights every Tuesday

Advisory breakdowns, a weekly summary, and incident analyses for the people actually defending OT environments. Free, no account required.

Siemens Ruggedcom Rox | CVSS 6.8 - OTPulse