← Back to home
ICSA-15-202-03B  ·  Published 2025-06-06  ·  View on CISA ICS-CERT ↗

Siemens RUGGEDCOM ROS and ROX-based Devices TLS POODLE Vulnerability (Update B)

CVSS 4.3 MEDIUM

CVEs (1)

Remediations

  • Siemens has produced a firmware update v4.2.0 for ROS-based devices and firmware update v2.9.0 for ROX II-based devices, which fixes the vulnerability
  • The firmware updates for the affected products can be obtained online at: (http://www.siemens.com/automation/support-request)
  • Call a local hotline center: (http://www.automation.siemens.com/)
  • Asset owners and operators should contact Siemens customer support to acquire the update
  • For more information on this vulnerability and detailed instructions, please see Siemens Security Advisory SSA-396873 at the following location: (http://www.siemens.com/cert/advisories/)

Affected Vendors

Siemens

Affected Products (2)

Siemens · RUGGEDCOM devices with ROS <v4.2.0
Siemens · RUGGEDCOM devices with ROX II <v2.9.0.

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more