← Back to home
ICSA-25-135-01  ·  Published 2026-02-12  ·  View on CISA ICS-CERT ↗

Siemens RUGGEDCOM APE1808 Devices

CVSS 9.8 CRITICAL CISA KEV — Known Exploited

CVEs (21)

Remediations

  • Update Fortigate NGFW to V7.4.9 or later following the secure update recommendation procedure. Contact customer support to receive detailed information
  • Under the config vpn ipsec phase1-interface configuration, either set authmethod to psk, or set digital-signature-auth to disable (see https://fortiguard.fortinet.com/psirt/FG-IR-24-373)
  • For each interface, remove "fabric" access (see https://fortiguard.fortinet.com/psirt/FG-IR-25-084)
  • Contact customer support to receive patch and update information
  • Disable security fabric access into interface. Only allow legit devices in Wifi Controller > Managed FortiAPs (see https://fortiguard.fortinet.com/psirt/FG-IR-25-358 for more information)
  • Disable security fabric access into interface. Only allow legit devices in Wifi Controller > Managed FortiAPs. Remove inter-controller-peer elements in config wireless-controller inter-controller configuration. (see https://fortiguard.fortinet.com/psirt/FG-IR-25-632 for more information)
  • To prevent being affected by this vulnerability on vulnerable versions, please turn off the FortiCloud login feature (if enabled, disabled by default) temporarily until upgrading to a non-affected version. (see https://fortiguard.fortinet.com/psirt/FG-IR-25-647 for more information)

Affected Vendors

Siemens

Affected Products (2)

Siemens · RUGGEDCOM APE1808 vers:all/*
Siemens · RUGGEDCOM APE1808 vers:all/*

Affected Sectors

Critical Manufacturing

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more