VDB
ICSA-25-044-06
ICSA-25-044-06
PUBLISHED
CVSS 9.800000190734863 CRITICAL
Fortinet has published information on vulnerabilities in FortiOS. This advisory lists the related Siemens Industrial products. Siemens has released a new version for RUGGEDCOM APE1808 and recommends to update to the latest version.
Risk Scores
CVSS 3.1
9.800000190734863
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| RUGGEDCOM APE1808 |
Exploit Intelligence
- Sxmpl3/CVE-2024-21762-Safe-Check (github-poc-repo)
- Sxmpl3/CVE-2024-21762-Safe-Check (github-poc)
- POC code to exploit the Heap overflow in Fortinet's SSLVPN daemon (github-poc-repo)
- FortiOS buffer overflow vulnerability (github-poc-repo)
- Mustafa1986/cve-2022-42475-Fortinet (github-poc-repo)
- CVE-2022-42475 飞塔RCE漏洞 POC (github-poc-repo)
- natceil/cve-2022-42475 (github-poc-repo)
- test for the ioc described for FG-IR-22-398 (github-poc-repo)
- An exploit for CVE-2022-42475, a pre-authentication heap overflow in Fortinet networking products (github-poc-repo)
- How to get access via CVE-2022-27997 (github-poc-repo)
…and 67 more exploits
Timeline
- Feb 11, 2025 CVE Published
- Mar 12, 2026 CVE Updated
References
- https://cert-portal.siemens.com/productcert/csaf/ssa-770770.json advisory
- https://cert-portal.siemens.com/productcert/html/ssa-770770.html advisory
- https://raw.githubusercontent.com/cisagov/CSAF/develop/csaf_files/OT/white/2025/icsa-25-044-06.json advisory
- https://www.cisa.gov/news-events/ics-advisories/icsa-25-044-06 advisory
- https://www.cisa.gov/news-events/ics-alerts/ics-alert-10-301-01 url
- https://www.cisa.gov/resources-tools/resources/ics-recommended-practices url
- https://www.cisa.gov/topics/industrial-control-systems url
- https://www.cisa.gov/sites/default/files/recommended_practices/NCCIC_ICS-CERT_Defense_in_Depth_2016_S508C.pdf url
- https://www.cisa.gov/sites/default/files/publications/Cybersecurity_Best_Practices_for_Industrial_Control_Systems.pdf url
- https://www.cisa.gov/news-events/news/targeted-cyber-intrusion-detection-and-mitigation-strategies-update-b url