Resource Exhaustion Vulnerability in RUGGEDCOM RST2428P by Siemens
CVE-2025-40802

2.3LOW

Key Information:

Vendor: Siemens
Status: Ruggedcom Rst2428p
Vendor: CVE Published:; 9 September 2025

What is CVE-2025-40802?

A resource exhaustion vulnerability has been detected in the RUGGEDCOM RST2428P device, potentially allowing an attacker to overwhelm the system by sending numerous query requests. This overload may lead to temporary denial of service, interrupting normal operations until the excessive requests cease. Users are encouraged to monitor traffic and implement protective measures to mitigate the risk of exploit.

Affected Version(s)

RUGGEDCOM RST2428P 0

References

https://cert-portal.siemens.com/productcert/html/ssa-4945...

CVSS V4

Score:

2.3

Severity:

LOW

Confidentiality:

Low

Integrity:

None

Availability:

None

Attack Vector:

Adjacent Network

Attack Complexity:

High

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 9, 2025
Vulnerability Reserved
Apr 16, 2025

JSON