{"dataType":"CVE_RECORD","dataVersion":"5.1","cveMetadata":{"cveId":"CVE-2024-38278","assignerOrgId":"cec7a2ec-15b4-4faf-bd53-b40f371f3a77","state":"PUBLISHED","assignerShortName":"siemens","dateReserved":"2024-06-12T14:37:01.983Z","datePublished":"2024-07-09T12:05:07.958Z","dateUpdated":"2025-08-27T20:42:54.768Z"},"containers":{"cna":{"providerMetadata":{"orgId":"cec7a2ec-15b4-4faf-bd53-b40f371f3a77","shortName":"siemens","dateUpdated":"2025-08-12T11:16:32.146Z"},"descriptions":[{"lang":"en","value":"A vulnerability has been identified in RUGGEDCOM RMC8388 V5.X (All versions < V5.9.0), RUGGEDCOM RMC8388NC V5.X (All versions < V5.9.0), RUGGEDCOM RS416NCv2 V5.X (All versions < V5.9.0), RUGGEDCOM RS416PNCv2 V5.X (All versions < V5.9.0), RUGGEDCOM RS416Pv2 V5.X (All versions < V5.9.0), RUGGEDCOM RS416v2 V5.X (All versions < V5.9.0), RUGGEDCOM RS900 (32M) V5.X (All versions < V5.9.0), RUGGEDCOM RS900G (32M) V5.X (All versions < V5.9.0), RUGGEDCOM RS900GNC(32M) V5.X (All versions < V5.9.0), RUGGEDCOM RS900NC(32M) V5.X (All versions < V5.9.0), RUGGEDCOM RSG2100 (32M) V5.X (All versions < V5.9.0), RUGGEDCOM RSG2100NC(32M) V5.X (All versions < V5.9.0), RUGGEDCOM RSG2100P (32M) V5.X (All versions < V5.9.0), RUGGEDCOM RSG2100PNC (32M) V5.X (All versions < V5.9.0), RUGGEDCOM RSG2288 V5.X (All versions < V5.9.0), RUGGEDCOM RSG2288NC V5.X (All versions < V5.9.0), RUGGEDCOM RSG2300 V5.X (All versions < V5.9.0), RUGGEDCOM RSG2300NC V5.X (All versions < V5.9.0), RUGGEDCOM RSG2300P V5.X (All versions < V5.9.0), RUGGEDCOM RSG2300PNC V5.X (All versions < V5.9.0), RUGGEDCOM RSG2488 V5.X (All versions < V5.9.0), RUGGEDCOM RSG2488NC V5.X (All versions < V5.9.0), RUGGEDCOM RSG907R (All versions < V5.9.0), RUGGEDCOM RSG908C (All versions < V5.9.0), RUGGEDCOM RSG909R (All versions < V5.9.0), RUGGEDCOM RSG910C (All versions < V5.9.0), RUGGEDCOM RSG920P V5.X (All versions < V5.9.0), RUGGEDCOM RSG920PNC V5.X (All versions < V5.9.0), RUGGEDCOM RSL910 (All versions < V5.9.0), RUGGEDCOM RSL910NC (All versions < V5.9.0), RUGGEDCOM RST2228 (All versions < V5.9.0), RUGGEDCOM RST2228P (All versions < V5.9.0), RUGGEDCOM RST916C (All versions < V5.9.0), RUGGEDCOM RST916P (All versions < V5.9.0). The affected products with IP forwarding enabled wrongly make available certain remote services in non-managed VLANs, even if these services are not intentionally activated. An attacker could leverage this vulnerability to create a remote shell to the affected system."}],"affected":[{"vendor":"Siemens","product":"RUGGEDCOM RMC8388 V5.X","versions":[{"status":"affected","version":"0","lessThan":"V5.9.0","versionType":"custom"}],"defaultStatus":"unknown"},{"vendor":"Siemens","product":"RUGGEDCOM RMC8388NC V5.X","versions":[{"status":"affected","version":"0","lessThan":"V5.9.0","versionType":"custom"}],"defaultStatus":"unknown"},{"vendor":"Siemens","product":"RUGGEDCOM RS416NCv2 V5.X","versions":[{"status":"affected","version":"0","lessThan":"V5.9.0","versionType":"custom"}],"defaultStatus":"unknown"},{"vendor":"Siemens","product":"RUGGEDCOM RS416PNCv2 V5.X","versions":[{"status":"affected","version":"0","lessThan":"V5.9.0","versionType":"custom"}],"defaultStatus":"unknown"},{"vendor":"Siemens","product":"RUGGEDCOM RS416Pv2 V5.X","versions":[{"status":"affected","version":"0","lessThan":"V5.9.0","versionType":"custom"}],"defaultStatus":"unknown"},{"vendor":"Siemens","product":"RUGGEDCOM RS416v2 V5.X","versions":[{"status":"affected","version":"0","lessThan":"V5.9.0","versionType":"custom"}],"defaultStatus":"unknown"},{"vendor":"Siemens","product":"RUGGEDCOM RS900 (32M) V5.X","versions":[{"status":"affected","version":"0","lessThan":"V5.9.0","versionType":"custom"}],"defaultStatus":"unknown"},{"vendor":"Siemens","product":"RUGGEDCOM RS900G (32M) V5.X","versions":[{"status":"affected","version":"0","lessThan":"V5.9.0","versionType":"custom"}],"defaultStatus":"unknown"},{"vendor":"Siemens","product":"RUGGEDCOM RS900GNC(32M) V5.X","versions":[{"status":"affected","version":"0","lessThan":"V5.9.0","versionType":"custom"}],"defaultStatus":"unknown"},{"vendor":"Siemens","product":"RUGGEDCOM RS900NC(32M) V5.X","versions":[{"status":"affected","version":"0","lessThan":"V5.9.0","versionType":"custom"}],"defaultStatus":"unknown"},{"vendor":"Siemens","product":"RUGGEDCOM RSG2100 (32M) V5.X","versions":[{"status":"affected","version":"0","lessThan":"V5.9.0","versionType":"custom"}],"defaultStatus":"unknown"},{"vendor":"Siemens","product":"RUGGEDCOM RSG2100NC(32M) V5.X","versions":[{"status":"affected","version":"0","lessThan":"V5.9.0","versionType":"custom"}],"defaultStatus":"unknown"},{"vendor":"Siemens","product":"RUGGEDCOM RSG2100P (32M) V5.X","versions":[{"status":"affected","version":"0","lessThan":"V5.9.0","versionType":"custom"}],"defaultStatus":"unknown"},{"vendor":"Siemens","product":"RUGGEDCOM RSG2100PNC (32M) V5.X","versions":[{"status":"affected","version":"0","lessThan":"V5.9.0","versionType":"custom"}],"defaultStatus":"unknown"},{"vendor":"Siemens","product":"RUGGEDCOM RSG2288 V5.X","versions":[{"status":"affected","version":"0","lessThan":"V5.9.0","versionType":"custom"}],"defaultStatus":"unknown"},{"vendor":"Siemens","product":"RUGGEDCOM RSG2288NC V5.X","versions":[{"status":"affected","version":"0","lessThan":"V5.9.0","versionType":"custom"}],"defaultStatus":"unknown"},{"vendor":"Siemens","product":"RUGGEDCOM RSG2300 V5.X","versions":[{"status":"affected","version":"0","lessThan":"V5.9.0","versionType":"custom"}],"defaultStatus":"unknown"},{"vendor":"Siemens","product":"RUGGEDCOM RSG2300NC V5.X","versions":[{"status":"affected","version":"0","lessThan":"V5.9.0","versionType":"custom"}],"defaultStatus":"unknown"},{"vendor":"Siemens","product":"RUGGEDCOM RSG2300P V5.X","versions":[{"status":"affected","version":"0","lessThan":"V5.9.0","versionType":"custom"}],"defaultStatus":"unknown"},{"vendor":"Siemens","product":"RUGGEDCOM RSG2300PNC V5.X","versions":[{"status":"affected","version":"0","lessThan":"V5.9.0","versionType":"custom"}],"defaultStatus":"unknown"},{"vendor":"Siemens","product":"RUGGEDCOM RSG2488 V5.X","versions":[{"status":"affected","version":"0","lessThan":"V5.9.0","versionType":"custom"}],"defaultStatus":"unknown"},{"vendor":"Siemens","product":"RUGGEDCOM RSG2488NC V5.X","versions":[{"status":"affected","version":"0","lessThan":"V5.9.0","versionType":"custom"}],"defaultStatus":"unknown"},{"vendor":"Siemens","product":"RUGGEDCOM RSG907R","versions":[{"status":"affected","version":"0","lessThan":"V5.9.0","versionType":"custom"}],"defaultStatus":"unknown"},{"vendor":"Siemens","product":"RUGGEDCOM RSG908C","versions":[{"status":"affected","version":"0","lessThan":"V5.9.0","versionType":"custom"}],"defaultStatus":"unknown"},{"vendor":"Siemens","product":"RUGGEDCOM RSG909R","versions":[{"status":"affected","version":"0","lessThan":"V5.9.0","versionType":"custom"}],"defaultStatus":"unknown"},{"vendor":"Siemens","product":"RUGGEDCOM RSG910C","versions":[{"status":"affected","version":"0","lessThan":"V5.9.0","versionType":"custom"}],"defaultStatus":"unknown"},{"vendor":"Siemens","product":"RUGGEDCOM RSG920P V5.X","versions":[{"status":"affected","version":"0","lessThan":"V5.9.0","versionType":"custom"}],"defaultStatus":"unknown"},{"vendor":"Siemens","product":"RUGGEDCOM RSG920PNC V5.X","versions":[{"status":"affected","version":"0","lessThan":"V5.9.0","versionType":"custom"}],"defaultStatus":"unknown"},{"vendor":"Siemens","product":"RUGGEDCOM RSL910","versions":[{"status":"affected","version":"0","lessThan":"V5.9.0","versionType":"custom"}],"defaultStatus":"unknown"},{"vendor":"Siemens","product":"RUGGEDCOM RSL910NC","versions":[{"status":"affected","version":"0","lessThan":"V5.9.0","versionType":"custom"}],"defaultStatus":"unknown"},{"vendor":"Siemens","product":"RUGGEDCOM RST2228","versions":[{"status":"affected","version":"0","lessThan":"V5.9.0","versionType":"custom"}],"defaultStatus":"unknown"},{"vendor":"Siemens","product":"RUGGEDCOM RST2228P","versions":[{"status":"affected","version":"0","lessThan":"V5.9.0","versionType":"custom"}],"defaultStatus":"unknown"},{"vendor":"Siemens","product":"RUGGEDCOM RST916C","versions":[{"status":"affected","version":"0","lessThan":"V5.9.0","versionType":"custom"}],"defaultStatus":"unknown"},{"vendor":"Siemens","product":"RUGGEDCOM RST916P","versions":[{"status":"affected","version":"0","lessThan":"V5.9.0","versionType":"custom"}],"defaultStatus":"unknown"}],"metrics":[{"cvssV3_1":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C","baseScore":6.6,"baseSeverity":"MEDIUM"}},{"cvssV4_0":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N","baseScore":7.5,"baseSeverity":"HIGH"}}],"problemTypes":[{"descriptions":[{"lang":"en","cweId":"CWE-266","description":"CWE-266: Incorrect Privilege Assignment","type":"CWE"}]}],"references":[{"url":"https://cert-portal.siemens.com/productcert/html/ssa-170375.html"}]},"adp":[{"metrics":[{"other":{"type":"ssvc","content":{"id":"CVE-2024-38278","role":"CISA Coordinator","options":[{"Exploitation":"none"},{"Automatable":"no"},{"Technical Impact":"total"}],"version":"2.0.3","timestamp":"2024-07-24T17:16:47.980613Z"}}}],"affected":[{"cpes":["cpe:2.3:o:siemens:ruggedcom_ros_rmc8388:*:*:*:*:*:*:*:*"],"vendor":"siemens","product":"ruggedcom_ros_rmc8388","versions":[{"status":"affected","version":"0","lessThan":"5.9.0","versionType":"custom"}],"defaultStatus":"unknown"},{"cpes":["cpe:2.3:o:siemens:ruggedcom_ros_rmc8388nc:*:*:*:*:*:*:*:*"],"vendor":"siemens","product":"ruggedcom_ros_rmc8388nc","versions":[{"status":"affected","version":"0","lessThan":"5.9.0","versionType":"custom"}],"defaultStatus":"unknown"},{"cpes":["cpe:2.3:o:siemens:ruggedcom_ros_rs416ncv2:*:*:*:*:*:*:*:*"],"vendor":"siemens","product":"ruggedcom_ros_rs416ncv2","versions":[{"status":"affected","version":"0","lessThan":"5.9.0","versionType":"custom"}],"defaultStatus":"unknown"},{"cpes":["cpe:2.3:o:siemens:ruggedcom_ros_rs416pncv2:*:*:*:*:*:*:*:*"],"vendor":"siemens","product":"ruggedcom_ros_rs416pncv2","versions":[{"status":"affected","version":"0","lessThan":"5.9.0","versionType":"custom"}],"defaultStatus":"unknown"},{"cpes":["cpe:2.3:o:siemens:ruggedcom_ros_rs416pv2:*:*:*:*:*:*:*:*"],"vendor":"siemens","product":"ruggedcom_ros_rs416pv2","versions":[{"status":"affected","version":"0","lessThan":"5.9.0","versionType":"custom"}],"defaultStatus":"unknown"},{"cpes":["cpe:2.3:o:siemens:ruggedcom_ros_rs416v2:*:*:*:*:*:*:*:*"],"vendor":"siemens","product":"ruggedcom_ros_rs416v2","versions":[{"status":"affected","version":"0","lessThan":"5.9.0","versionType":"custom"}],"defaultStatus":"unknown"},{"cpes":["cpe:2.3:o:siemens:ruggedcom_ros_rs900:*:*:*:*:*:*:*:*"],"vendor":"siemens","product":"ruggedcom_ros_rs900","versions":[{"status":"affected","version":"0","lessThan":"5.9.0","versionType":"custom"}],"defaultStatus":"unknown"},{"cpes":["cpe:2.3:o:siemens:ruggedcom_ros_rs900g:*:*:*:*:*:*:*:*"],"vendor":"siemens","product":"ruggedcom_ros_rs900g","versions":[{"status":"affected","version":"0","lessThan":"5.9.0","versionType":"custom"}],"defaultStatus":"unknown"},{"cpes":["cpe:2.3:o:siemens:ruggedcom_ros_rs900gnc:*:*:*:*:*:*:*:*"],"vendor":"siemens","product":"ruggedcom_ros_rs900gnc","versions":[{"status":"affected","version":"0","lessThan":"5.9.0","versionType":"custom"}],"defaultStatus":"unknown"},{"cpes":["cpe:2.3:o:siemens:ruggedcom_ros_rs900nc:*:*:*:*:*:*:*:*"],"vendor":"siemens","product":"ruggedcom_ros_rs900nc","versions":[{"status":"affected","version":"0","lessThan":"5.9.0","versionType":"custom"}],"defaultStatus":"unknown"},{"cpes":["cpe:2.3:o:siemens:ruggedcom_ros_rsg2100:*:*:*:*:*:*:*:*"],"vendor":"siemens","product":"ruggedcom_ros_rsg2100","versions":[{"status":"affected","version":"0","lessThan":"5.9.0","versionType":"custom"}],"defaultStatus":"unknown"},{"cpes":["cpe:2.3:o:siemens:ruggedcom_ros_rsg2100nc:*:*:*:*:*:*:*:*"],"vendor":"siemens","product":"ruggedcom_ros_rsg2100nc","versions":[{"status":"affected","version":"0","lessThan":"5.9.0","versionType":"custom"}],"defaultStatus":"unknown"},{"cpes":["cpe:2.3:o:siemens:ruggedcom_ros_rsg2288:*:*:*:*:*:*:*:*"],"vendor":"siemens","product":"ruggedcom_ros_rsg2288","versions":[{"status":"affected","version":"0","lessThan":"5.9.0","versionType":"custom"}],"defaultStatus":"unknown"},{"cpes":["cpe:2.3:o:siemens:ruggedcom_ros_rsg2288nc:*:*:*:*:*:*:*:*"],"vendor":"siemens","product":"ruggedcom_ros_rsg2288nc","versions":[{"status":"affected","version":"0","lessThan":"5.9.0","versionType":"custom"}],"defaultStatus":"unknown"},{"cpes":["cpe:2.3:o:siemens:ruggedcom_ros_rsg2300:*:*:*:*:*:*:*:*"],"vendor":"siemens","product":"ruggedcom_ros_rsg2300","versions":[{"status":"affected","version":"0","lessThan":"5.9.0","versionType":"custom"}],"defaultStatus":"unknown"},{"cpes":["cpe:2.3:o:siemens:ruggedcom_ros_rsg2300nc:*:*:*:*:*:*:*:*"],"vendor":"siemens","product":"ruggedcom_ros_rsg2300nc","versions":[{"status":"affected","version":"0","lessThan":"5.9.0","versionType":"custom"}],"defaultStatus":"unknown"},{"cpes":["cpe:2.3:o:siemens:ruggedcom_ros_rsg2300p:*:*:*:*:*:*:*:*"],"vendor":"siemens","product":"ruggedcom_ros_rsg2300p","versions":[{"status":"affected","version":"0","lessThan":"5.9.0","versionType":"custom"}],"defaultStatus":"unknown"},{"cpes":["cpe:2.3:o:siemens:ruggedcom_ros_rsg2300pnc:*:*:*:*:*:*:*:*"],"vendor":"siemens","product":"ruggedcom_ros_rsg2300pnc","versions":[{"status":"affected","version":"0","lessThan":"5.9.0","versionType":"custom"}],"defaultStatus":"unknown"},{"cpes":["cpe:2.3:o:siemens:ruggedcom_ros_rsg2488:*:*:*:*:*:*:*:*"],"vendor":"siemens","product":"ruggedcom_ros_rsg2488","versions":[{"status":"affected","version":"0","lessThan":"5.9.0","versionType":"custom"}],"defaultStatus":"unknown"},{"cpes":["cpe:2.3:o:siemens:ruggedcom_ros_rsg2488nc:*:*:*:*:*:*:*:*"],"vendor":"siemens","product":"ruggedcom_ros_rsg2488nc","versions":[{"status":"affected","version":"0","lessThan":"5.9.0","versionType":"custom"}],"defaultStatus":"unknown"},{"cpes":["cpe:2.3:o:siemens:ruggedcom_ros_rsg907r:*:*:*:*:*:*:*:*"],"vendor":"siemens","product":"ruggedcom_ros_rsg907r","versions":[{"status":"affected","version":"0","lessThan":"5.9.0","versionType":"custom"}],"defaultStatus":"unknown"},{"cpes":["cpe:2.3:o:siemens:ruggedcom_ros_rsg908c:*:*:*:*:*:*:*:*"],"vendor":"siemens","product":"ruggedcom_ros_rsg908c","versions":[{"status":"affected","version":"0","lessThan":"5.9.0","versionType":"custom"}],"defaultStatus":"unknown"},{"cpes":["cpe:2.3:o:siemens:ruggedcom_ros_rsg909r:*:*:*:*:*:*:*:*"],"vendor":"siemens","product":"ruggedcom_ros_rsg909r","versions":[{"status":"affected","version":"0","lessThan":"5.9.0","versionType":"custom"}],"defaultStatus":"unknown"},{"cpes":["cpe:2.3:o:siemens:ruggedcom_ros_rsg910c:*:*:*:*:*:*:*:*"],"vendor":"siemens","product":"ruggedcom_ros_rsg910c","versions":[{"status":"affected","version":"0","lessThan":"5.9.0","versionType":"custom"}],"defaultStatus":"unknown"},{"cpes":["cpe:2.3:o:siemens:ruggedcom_ros_rsg920p:*:*:*:*:*:*:*:*"],"vendor":"siemens","product":"ruggedcom_ros_rsg920p","versions":[{"status":"affected","version":"0","lessThan":"5.9.0","versionType":"custom"}],"defaultStatus":"unknown"},{"cpes":["cpe:2.3:o:siemens:ruggedcom_ros_rsg920pnc:*:*:*:*:*:*:*:*"],"vendor":"siemens","product":"ruggedcom_ros_rsg920pnc","versions":[{"status":"affected","version":"0","lessThan":"5.9.0","versionType":"custom"}],"defaultStatus":"unknown"},{"cpes":["cpe:2.3:o:siemens:ruggedcom_ros_rsl910:*:*:*:*:*:*:*:*"],"vendor":"siemens","product":"ruggedcom_ros_rsl910","versions":[{"status":"affected","version":"0","lessThan":"5.9.0","versionType":"custom"}],"defaultStatus":"unknown"},{"cpes":["cpe:2.3:o:siemens:ruggedcom_ros_rsl910nc:*:*:*:*:*:*:*:*"],"vendor":"siemens","product":"ruggedcom_ros_rsl910nc","versions":[{"status":"affected","version":"0","lessThan":"5.9.0","versionType":"custom"}],"defaultStatus":"unknown"},{"cpes":["cpe:2.3:o:siemens:ruggedcom_ros_rst2228:*:*:*:*:*:*:*:*"],"vendor":"siemens","product":"ruggedcom_ros_rst2228","versions":[{"status":"affected","version":"0","lessThan":"5.9.0","versionType":"custom"}],"defaultStatus":"unknown"},{"cpes":["cpe:2.3:o:siemens:ruggedcom_ros_rst2228p:*:*:*:*:*:*:*:*"],"vendor":"siemens","product":"ruggedcom_ros_rst2228p","versions":[{"status":"affected","version":"0","lessThan":"5.9.0","versionType":"custom"}],"defaultStatus":"unknown"},{"cpes":["cpe:2.3:o:siemens:ruggedcom_ros_rst916c:*:*:*:*:*:*:*:*"],"vendor":"siemens","product":"ruggedcom_ros_rst916c","versions":[{"status":"affected","version":"0","lessThan":"5.9.0","versionType":"custom"}],"defaultStatus":"unknown"},{"cpes":["cpe:2.3:o:siemens:ruggedcom_ros_rst916p:*:*:*:*:*:*:*:*"],"vendor":"siemens","product":"ruggedcom_ros_rst916p","versions":[{"status":"affected","version":"0","lessThan":"5.9.0","versionType":"custom"}],"defaultStatus":"unknown"}],"title":"CISA ADP Vulnrichment","providerMetadata":{"orgId":"134c704f-9b21-4f2e-91b3-4a467353bcc0","shortName":"CISA-ADP","dateUpdated":"2025-08-27T20:42:54.768Z"}},{"providerMetadata":{"orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE","dateUpdated":"2024-08-02T04:04:25.242Z"},"title":"CVE Program Container","references":[{"url":"https://cert-portal.siemens.com/productcert/html/ssa-170375.html","tags":["x_transferred"]}]}]}}