CVE-2025-41224

Summary

A vulnerability has been identified in RUGGEDCOM RMC8388 V5.X (All versions < V5.10.0), RUGGEDCOM RMC8388NC V5.X (All versions < V5.10.0), RUGGEDCOM RS416NCv2 V5.X (All versions < V5.10.0), RUGGEDCOM RS416PNCv2 V5.X (All versions < V5.10.0), RUGGEDCOM RS416Pv2 V5.X (All versions < V5.10.0), RUGGEDCOM RS416v2 V5.X (All versions < V5.10.0), RUGGEDCOM RS900 (32M) V5.X (All versions < V5.10.0), RUGGEDCOM RS900G (32M) V5.X (All versions < V5.10.0), RUGGEDCOM RS900GNC(32M) V5.X (All versions < V5.10.0), RUGGEDCOM RS900NC(32M) V5.X (All versions < V5.10.0), RUGGEDCOM RSG2100 (32M) V5.X (All versions < V5.10.0), RUGGEDCOM RSG2100NC(32M) V5.X (All versions < V5.10.0), RUGGEDCOM RSG2100P (32M) V5.X (All versions < V5.10.0), RUGGEDCOM RSG2100PNC (32M) V5.X (All versions < V5.10.0), RUGGEDCOM RSG2288 V5.X (All versions < V5.10.0), RUGGEDCOM RSG2288NC V5.X (All versions < V5.10.0), RUGGEDCOM RSG2300 V5.X (All versions < V5.10.0), RUGGEDCOM RSG2300NC V5.X (All versions < V5.10.0), RUGGEDCOM RSG2300P V5.X (All versions < V5.10.0), RUGGEDCOM RSG2300PNC V5.X (All versions < V5.10.0), RUGGEDCOM RSG2488 V5.X (All versions < V5.10.0), RUGGEDCOM RSG2488NC V5.X (All versions < V5.10.0), RUGGEDCOM RSG907R (All versions < V5.10.0), RUGGEDCOM RSG908C (All versions < V5.10.0), RUGGEDCOM RSG909R (All versions < V5.10.0), RUGGEDCOM RSG910C (All versions < V5.10.0), RUGGEDCOM RSG920P V5.X (All versions < V5.10.0), RUGGEDCOM RSG920PNC V5.X (All versions < V5.10.0), RUGGEDCOM RSL910 (All versions < V5.10.0), RUGGEDCOM RSL910NC (All versions < V5.10.0), RUGGEDCOM RST2228 (All versions < V5.10.0), RUGGEDCOM RST2228P (All versions < V5.10.0), RUGGEDCOM RST916C (All versions < V5.10.0), RUGGEDCOM RST916P (All versions < V5.10.0). The affected products do not properly enforce interface access restrictions when changing from management to non-management interface configurations until a system reboot occurs, despite configuration being saved. This could allow an attacker with network access and credentials to gain access to device through non-management and maintain SSH access to the device until reboot.

Affected Software

VendorProductVersion RangeStatus
SiemensRUGGEDCOM RMC8388 V5.X0 < V5.10.0affected
SiemensRUGGEDCOM RMC8388NC V5.X0 < V5.10.0affected
SiemensRUGGEDCOM RS416NCv2 V5.X0 < V5.10.0affected
SiemensRUGGEDCOM RS416PNCv2 V5.X0 < V5.10.0affected
SiemensRUGGEDCOM RS416Pv2 V5.X0 < V5.10.0affected
SiemensRUGGEDCOM RS416v2 V5.X0 < V5.10.0affected
SiemensRUGGEDCOM RS900 (32M) V5.X0 < V5.10.0affected
SiemensRUGGEDCOM RS900G (32M) V5.X0 < V5.10.0affected
SiemensRUGGEDCOM RS900GNC(32M) V5.X0 < V5.10.0affected
SiemensRUGGEDCOM RS900NC(32M) V5.X0 < V5.10.0affected
SiemensRUGGEDCOM RSG2100 (32M) V5.X0 < V5.10.0affected
SiemensRUGGEDCOM RSG2100NC(32M) V5.X0 < V5.10.0affected
SiemensRUGGEDCOM RSG2100P (32M) V5.X0 < V5.10.0affected
SiemensRUGGEDCOM RSG2100PNC (32M) V5.X0 < V5.10.0affected
SiemensRUGGEDCOM RSG2288 V5.X0 < V5.10.0affected
SiemensRUGGEDCOM RSG2288NC V5.X0 < V5.10.0affected
SiemensRUGGEDCOM RSG2300 V5.X0 < V5.10.0affected
SiemensRUGGEDCOM RSG2300NC V5.X0 < V5.10.0affected
SiemensRUGGEDCOM RSG2300P V5.X0 < V5.10.0affected
SiemensRUGGEDCOM RSG2300PNC V5.X0 < V5.10.0affected
SiemensRUGGEDCOM RSG2488 V5.X0 < V5.10.0affected
SiemensRUGGEDCOM RSG2488NC V5.X0 < V5.10.0affected
SiemensRUGGEDCOM RSG907R0 < V5.10.0affected
SiemensRUGGEDCOM RSG908C0 < V5.10.0affected
SiemensRUGGEDCOM RSG909R0 < V5.10.0affected
SiemensRUGGEDCOM RSG910C0 < V5.10.0affected
SiemensRUGGEDCOM RSG920P V5.X0 < V5.10.0affected
SiemensRUGGEDCOM RSG920PNC V5.X0 < V5.10.0affected
SiemensRUGGEDCOM RSL9100 < V5.10.0affected
SiemensRUGGEDCOM RSL910NC0 < V5.10.0affected
SiemensRUGGEDCOM RST22280 < V5.10.0affected
SiemensRUGGEDCOM RST2228P0 < V5.10.0affected
SiemensRUGGEDCOM RST916C0 < V5.10.0affected
SiemensRUGGEDCOM RST916P0 < V5.10.0affected

Weaknesses

  • CWE-693: CWE-693: Protection Mechanism Failure

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References