RuggedCOM ROX II < V2.17.0: DNS Injection Enables Root Shell
CVE-2024-56836 Published on December 9, 2025
A vulnerability has been identified in RUGGEDCOM ROX MX5000 (All versions < V2.17.0), RUGGEDCOM ROX MX5000RE (All versions < V2.17.0), RUGGEDCOM ROX RX1400 (All versions < V2.17.0), RUGGEDCOM ROX RX1500 (All versions < V2.17.0), RUGGEDCOM ROX RX1501 (All versions < V2.17.0), RUGGEDCOM ROX RX1510 (All versions < V2.17.0), RUGGEDCOM ROX RX1511 (All versions < V2.17.0), RUGGEDCOM ROX RX1512 (All versions < V2.17.0), RUGGEDCOM ROX RX1524 (All versions < V2.17.0), RUGGEDCOM ROX RX1536 (All versions < V2.17.0), RUGGEDCOM ROX RX5000 (All versions < V2.17.0). During the Dynamic DNS configuration of the affected product it is possible to inject additional configuration parameters. Under certain circumstances, an attacker could leverage this vulnerability to spawn a reverse shell and gain root access on the affected system.
Weakness Type
What is a Command Injection Vulnerability?
The software constructs all or part of a command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended command when it is sent to a downstream component.
CVE-2024-56836 has been classified to as a Command Injection vulnerability or weakness.
Affected Versions
Siemens RUGGEDCOM ROX MX5000:- Before V2.17.0 is affected.
- Before V2.17.0 is affected.
- Before V2.17.0 is affected.
- Before V2.17.0 is affected.
- Before V2.17.0 is affected.
- Before V2.17.0 is affected.
- Before V2.17.0 is affected.
- Before V2.17.0 is affected.
- Before V2.17.0 is affected.
- Before V2.17.0 is affected.
- Before V2.17.0 is affected.
Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.