ICSA-24-074-05
·
Published 2026-01-14
·
View on CISA ICS-CERT ↗
Siemens RUGGEDCOM APE1808
CVSS 9.8
CRITICAL
CISA KEV — Known Exploited
CVEs (30)
CVE-2022-23439
CVE-2022-45862
CVE-2023-36640
CVE-2023-38545
CVE-2023-38546
CVE-2023-40721
CVE-2023-41677
CVE-2023-42785
CVE-2023-42786
CVE-2023-42789
CVE-2023-42790
CVE-2023-44247
CVE-2023-44250
CVE-2023-44487
CVE-2023-45583
CVE-2023-45586
CVE-2023-46714
CVE-2023-46715
CVE-2023-46717
CVE-2023-46718
CVE-2023-47537
CVE-2023-48784
CVE-2024-23110
CVE-2024-23112
CVE-2024-23113
CVE-2024-23662
CVE-2024-26007
CVE-2024-26011
CVE-2024-40593
CVE-2025-54822
Remediations
- Update Fortigate NGFW to V7.4.3. Contact customer support to receive patch and update information.
- Set a non form-based authentication scheme (see https://fortiguard.fortinet.com/psirt/FG-IR-23-328)
- For each interface, remove the fgfm access (see https://www.fortiguard.com/psirt/FG-IR-24-029)
Affected Vendors
Siemens
Affected Products (2)
Siemens
·
RUGGEDCOM APE1808
vers:all/*
Siemens
·
RUGGEDCOM APE1808
vers:all/*
Affected Sectors
Critical Manufacturing
Get alerted to advisories like this
OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.
Start free trial Learn more