← Back to home

ICSA-25-294-04 · Published 2025-10-14 · View on CISA ICS-CERT ↗

Siemens RUGGEDCOM ROS Devices

CVSS 8.8 HIGH

CVEs (4)

CVE-2023-52236 CVE-2025-41222 CVE-2025-41223 CVE-2025-41224

Remediations

Restrict access to port 80/tcp, 443/tcp and 22/tcp to trusted IP addresses only
Deactivate the webserver if not required, and if deactivation is supported by the product
Deactivate the SSH server if not required, and if deactivation is supported by the product
Currently no fix is available
Update to V5.10.0 or later version
Restrict access to port 80/tcp, 443/tcp and 22/TCP, to trusted IP addresses only
Configure the web client to use GCM ciphers; for list of ROS supported cipher suites refer to configuration manual

Affected Vendors

Siemens

Affected Products (90)

Siemens · RUGGEDCOM i800 vers:all/*

Siemens · RUGGEDCOM i801 vers:all/*

Siemens · RUGGEDCOM i802 vers:all/*

Siemens · RUGGEDCOM i803 vers:all/*

Siemens · RUGGEDCOM M2100 vers:all/*

Siemens · RUGGEDCOM M2200 vers:all/*

Siemens · RUGGEDCOM M969 vers:all/*

Siemens · RUGGEDCOM RMC30 vers:all/*

Siemens · RUGGEDCOM RMC8388 V4.X vers:all/*

Siemens · RUGGEDCOM RMC8388 V5.X vers:intdot/<5.10.0

Siemens · RUGGEDCOM RMC8388NC V5.X vers:intdot/<5.10.0

Siemens · RUGGEDCOM ROS V4.X family vers:all/*

Siemens · RUGGEDCOM ROS V4.X NC products vers:all/*

Siemens · RUGGEDCOM ROS V5.X NC products vers:all/*

Siemens · RUGGEDCOM RP110 vers:all/*

Siemens · RUGGEDCOM RS1600 vers:all/*

Siemens · RUGGEDCOM RS1600F vers:all/*

Siemens · RUGGEDCOM RS1600T vers:all/*

Siemens · RUGGEDCOM RS400 vers:all/*

Siemens · RUGGEDCOM RS401 vers:all/*

Siemens · RUGGEDCOM RS416 vers:all/*

Siemens · RUGGEDCOM RS416NCv2 V5.X vers:intdot/<5.10.0

Siemens · RUGGEDCOM RS416P vers:all/*

Siemens · RUGGEDCOM RS416PNCv2 V5.X vers:intdot/<5.10.0

Siemens · RUGGEDCOM RS416Pv2 V4.X vers:all/*

Siemens · RUGGEDCOM RS416Pv2 V5.X vers:intdot/<5.10.0

Siemens · RUGGEDCOM RS416v2 V4.X vers:all/*

Siemens · RUGGEDCOM RS416v2 V5.X vers:intdot/<5.10.0

Siemens · RUGGEDCOM RS8000 vers:all/*

Siemens · RUGGEDCOM RS8000A vers:all/*

Siemens · RUGGEDCOM RS8000H vers:all/*

Siemens · RUGGEDCOM RS8000T vers:all/*

Siemens · RUGGEDCOM RS900 vers:all/*

Siemens · RUGGEDCOM RS900 (32M) V4.X vers:all/*

Siemens · RUGGEDCOM RS900 (32M) V5.X vers:intdot/<5.10.0

Siemens · RUGGEDCOM RS900G vers:all/*

Siemens · RUGGEDCOM RS900G (32M) V4.X vers:all/*

Siemens · RUGGEDCOM RS900G (32M) V5.X vers:intdot/<5.10.0

Siemens · RUGGEDCOM RS900GNC(32M) V5.X vers:intdot/<5.10.0

Siemens · RUGGEDCOM RS900GP vers:all/*

Siemens · RUGGEDCOM RS900L vers:all/*

Siemens · RUGGEDCOM RS900M-GETS-C01 vers:all/*

Siemens · RUGGEDCOM RS900M-GETS-XX vers:all/*

Siemens · RUGGEDCOM RS900M-STND-C01 vers:all/*

Siemens · RUGGEDCOM RS900M-STND-XX vers:all/*

Siemens · RUGGEDCOM RS900NC(32M) V5.X vers:intdot/<5.10.0

Siemens · RUGGEDCOM RS900W vers:all/*

Siemens · RUGGEDCOM RS910 vers:all/*

Siemens · RUGGEDCOM RS910L vers:all/*

Siemens · RUGGEDCOM RS910W vers:all/*

Siemens · RUGGEDCOM RS920L vers:all/*

Siemens · RUGGEDCOM RS920W vers:all/*

Siemens · RUGGEDCOM RS930L vers:all/*

Siemens · RUGGEDCOM RS930W vers:all/*

Siemens · RUGGEDCOM RS940G vers:all/*

Siemens · RUGGEDCOM RS969 vers:all/*

Siemens · RUGGEDCOM RSG2100 vers:all/*

Siemens · RUGGEDCOM RSG2100 (32M) V4.X vers:all/*

Siemens · RUGGEDCOM RSG2100 (32M) V5.X vers:intdot/<5.10.0

Siemens · RUGGEDCOM RSG2100NC(32M) V5.X vers:intdot/<5.10.0

Siemens · RUGGEDCOM RSG2100P vers:all/*

Siemens · RUGGEDCOM RSG2100P (32M) V4.X vers:all/*

Siemens · RUGGEDCOM RSG2100P (32M) V5.X vers:intdot/<5.10.0

Siemens · RUGGEDCOM RSG2100PNC (32M) V5.X vers:intdot/<5.10.0

Siemens · RUGGEDCOM RSG2200 vers:all/*

Siemens · RUGGEDCOM RSG2288 V4.X vers:all/*

Siemens · RUGGEDCOM RSG2288 V5.X vers:intdot/<5.10.0

Siemens · RUGGEDCOM RSG2288NC V5.X vers:intdot/<5.10.0

Siemens · RUGGEDCOM RSG2300 V4.X vers:all/*

Siemens · RUGGEDCOM RSG2300 V5.X vers:intdot/<5.10.0

Siemens · RUGGEDCOM RSG2300NC V5.X vers:intdot/<5.10.0

Siemens · RUGGEDCOM RSG2300P V4.X vers:all/*

Siemens · RUGGEDCOM RSG2300P V5.X vers:intdot/<5.10.0

Siemens · RUGGEDCOM RSG2300PNC V5.X vers:intdot/<5.10.0

Siemens · RUGGEDCOM RSG2488 V4.X vers:all/*

Siemens · RUGGEDCOM RSG2488 V5.X vers:intdot/<5.10.0

Siemens · RUGGEDCOM RSG2488NC V5.X vers:intdot/<5.10.0

Siemens · RUGGEDCOM RSG907R vers:intdot/<5.10.0

Siemens · RUGGEDCOM RSG908C vers:intdot/<5.10.0

Siemens · RUGGEDCOM RSG909R vers:intdot/<5.10.0

Siemens · RUGGEDCOM RSG910C vers:intdot/<5.10.0

Siemens · RUGGEDCOM RSG920P V4.X vers:all/*

Siemens · RUGGEDCOM RSG920P V5.X vers:intdot/<5.10.0

Siemens · RUGGEDCOM RSG920PNC V5.X vers:intdot/<5.10.0

Siemens · RUGGEDCOM RSL910 vers:intdot/<5.10.0

Siemens · RUGGEDCOM RSL910NC vers:intdot/<5.10.0

Siemens · RUGGEDCOM RST2228 vers:intdot/<5.10.0

Siemens · RUGGEDCOM RST2228P vers:intdot/<5.10.0

Siemens · RUGGEDCOM RST916C vers:intdot/<5.10.0

Siemens · RUGGEDCOM RST916P vers:intdot/<5.10.0

Affected Sectors

Critical Manufacturing

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more