You are using an out of date browser. It may not display this or other websites correctly. You should upgrade or use an alternative browser.
cve-2025-40761
About this tag
CVE-2025-40761 is a high-severity authentication bypass vulnerability affecting Siemens RUGGEDCOM ROX II devices. An attacker with physical access to the device's serial interface can exploit the Built-In-Self-Test (BIST) mode to obtain a root shell, bypassing standard authentication. This vulnerability is particularly concerning for industrial and critical-manufacturing environments where these devices are deployed for resilient networking. The tag covers discussions, advisories, and mitigation strategies related to CVE-2025-40761, including its impact on enterprise IT and security operations. Users can find technical details, patch information, and community insights on securing affected systems.
Siemens RUGGEDCOM ROX II devices are the subject of a newly cataloged vulnerability — tracked as CVE-2025-40761 — that allows an attacker with physical access to the device’s serial interface to bypass authentication through the device’s Built-In-Self-Test (BIST) mode and obtain a root shell, a...