SARA / Free Tools / CVE / CVE-2024-38278

CVE-2024-38278 — A vulnerability has been identified in RUGGEDCOM RMC8388 V5

A vulnerability has been identified in RUGGEDCOM RMC8388 V5.X (All versions < V5.9.0), RUGGEDCOM RMC8388NC V5.X (All versions < V5.9.0), RUGGEDCOM RS416NCv2 V5.X (All versions < V5.9.0), RUGGEDCOM RS416PNCv2 V5.X (All versions < V5.9.0), RUGGEDCOM RS416Pv2 V5.X (All v

CVSS
7.5 HIGH
EPSS
9.00% (top 74.00%)
CWE
CWE-266
Published
2024-07-09T12:05:07.958Z
Last modified
2025-08-27T20:42:54.768Z
CVSS vector
CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C

01What is this vulnerability?

A vulnerability has been identified in RUGGEDCOM RMC8388 V5.X (All versions < V5.9.0), RUGGEDCOM RMC8388NC V5.X (All versions < V5.9.0), RUGGEDCOM RS416NCv2 V5.X (All versions < V5.9.0), RUGGEDCOM RS416PNCv2 V5.X (All versions < V5.9.0), RUGGEDCOM RS416Pv2 V5.X (All versions < V5.9.0), RUGGEDCOM RS416v2 V5.X (All versions < V5.9.0), RUGGEDCOM RS900 (32M) V5.X (All versions < V5.9.0), RUGGEDCOM…

02Affected products

VendorProductVersions
SiemensRUGGEDCOM RMC8388 V5.X0
SiemensRUGGEDCOM RMC8388NC V5.X0
SiemensRUGGEDCOM RS416NCv2 V5.X0
SiemensRUGGEDCOM RS416PNCv2 V5.X0
SiemensRUGGEDCOM RS416Pv2 V5.X0
SiemensRUGGEDCOM RS416v2 V5.X0
SiemensRUGGEDCOM RS900 (32M) V5.X0
SiemensRUGGEDCOM RS900G (32M) V5.X0
SiemensRUGGEDCOM RS900GNC(32M) V5.X0
SiemensRUGGEDCOM RS900NC(32M) V5.X0
SiemensRUGGEDCOM RSG2100 (32M) V5.X0
SiemensRUGGEDCOM RSG2100NC(32M) V5.X0
SiemensRUGGEDCOM RSG2100P (32M) V5.X0
SiemensRUGGEDCOM RSG2100PNC (32M) V5.X0
SiemensRUGGEDCOM RSG2288 V5.X0
SiemensRUGGEDCOM RSG2288NC V5.X0
SiemensRUGGEDCOM RSG2300 V5.X0
SiemensRUGGEDCOM RSG2300NC V5.X0
SiemensRUGGEDCOM RSG2300P V5.X0
SiemensRUGGEDCOM RSG2300PNC V5.X0
SiemensRUGGEDCOM RSG2488 V5.X0
SiemensRUGGEDCOM RSG2488NC V5.X0
SiemensRUGGEDCOM RSG907R0
SiemensRUGGEDCOM RSG908C0
SiemensRUGGEDCOM RSG909R0
SiemensRUGGEDCOM RSG910C0
SiemensRUGGEDCOM RSG920P V5.X0
SiemensRUGGEDCOM RSG920PNC V5.X0
SiemensRUGGEDCOM RSL9100
SiemensRUGGEDCOM RSL910NC0
SiemensRUGGEDCOM RST22280
SiemensRUGGEDCOM RST2228P0
SiemensRUGGEDCOM RST916C0
SiemensRUGGEDCOM RST916P0

03Active exploitation status

Not currently listed on the CISA Known Exploited Vulnerabilities (KEV) catalog. EPSS is the best forward-looking signal — see the EPSS row above.

04Recommended remediation

05Technical details

For the full vendor write-up, exploit chains, and reference implementations, see the references list in section 09.

06Detection signatures

Open the Sigma generator with a pre-filled prompt for this CVE to draft a starting detection in your stack of choice:

Open in Sigma generator →

07Related CVEs

No directly-cited follow-up CVEs in the KB record for this advisory. The references list in section 09 carries the vendor cross-references.

08Timeline

09References

Want this in your SOAR or SIEM?
SARA's API returns EPSS, CVSS, KEV, and an analyst-grade summary in one call.
Read the API reference →
EPSS detail → Search KEV → Ask SARA →