Denial-of-Service Vulnerability in RUGGEDCOM ROX Devices
Plan Patch7.5SSA-173565Oct 12, 2021
Attack VectorNetwork
Auth RequiredNone
ComplexityLow
User InteractionNone needed
Summary
A vulnerability in RUGGEDCOM ROX devices allows an unauthenticated remote attacker to trigger a permanent denial-of-service condition under certain circumstances. The issue is caused by improper input validation (CWE-400), enabling resource exhaustion. Affected are RUGGEDCOM ROX MX5000 and RX-series devices (RX1400, RX1500, RX1501, RX1510, RX1511, RX1512, RX1524, RX1536, RX5000) running firmware versions prior to V2.14.1.
What this means
What could happen
An attacker can cause a permanent denial-of-service on RUGGEDCOM ROX devices without authentication, preventing network communication until the device is manually rebooted or reset. This could disrupt monitoring and control of critical network infrastructure.
Who's at risk
Network operators and utilities running RUGGEDCOM ROX industrial managed switches in their control networks, including water authorities and electric utilities using these devices for SCADA network isolation and communications.
How it could be exploited
An attacker on the network sends specially crafted packets to the RUGGEDCOM ROX device without needing credentials. The vulnerable code fails to validate or rate-limit these inputs properly, causing resource exhaustion or a crash that disables the device's network functions permanently.
Prerequisites
- Network connectivity to the RUGGEDCOM ROX device
- Device running firmware version below V2.14.1
remotely exploitableno authentication requiredlow complexityaffects availability (permanent denial-of-service)
Exploitability
Low exploit probability (EPSS 0.5%)
Affected products (10)
10 with fix
ProductAffected VersionsFix Status
RUGGEDCOM ROX MX5000< V2.14.12.14.1
RUGGEDCOM ROX RX1400< V2.14.12.14.1
RUGGEDCOM ROX RX1500< V2.14.12.14.1
RUGGEDCOM ROX RX1501< V2.14.12.14.1
RUGGEDCOM ROX RX1510< V2.14.12.14.1
RUGGEDCOM ROX RX1511< V2.14.12.14.1
RUGGEDCOM ROX RX1512< V2.14.12.14.1
RUGGEDCOM ROX RX1524< V2.14.12.14.1
Remediation & Mitigation
0/1
Schedule — requires maintenance window
0/1Patching may require device reboot — plan for process interruption
HOTFIXUpdate RUGGEDCOM ROX devices to firmware version V2.14.1 or later
CVEs (1)
↑↓ Navigate · Esc Close
API:
/api/v1/advisories/1b078cd6-5099-4105-bcac-671796d2c0c1