ICSA-26-015-05 — Vulnetix

ICSA-26-015-05 PUBLISHED CVSS 4.300000190734863 MEDIUM

Ruggedcom ROS devices contain a temporary denial of service vulnerability that could allow an attacker to crash and restart the device. Siemens has released new versions for the affected products and recommends to update to the latest versions.

Risk Scores

CVSS v3.1

4.300000190734863

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L

Affected Products

Vendor	Product	Versions
	RUGGEDCOM RMC8388 V5.X
	RUGGEDCOM RSG2100P (32M) V5.X
	RUGGEDCOM RSG920P V5.X
	RUGGEDCOM RS416Pv2 V5.X
	RUGGEDCOM RSG2288 V5.X
	RUGGEDCOM RS900 (32M) V5.X
	RUGGEDCOM RSG2300P V5.X
	RUGGEDCOM RSG2300 V5.X
	RUGGEDCOM RSG908C
	RUGGEDCOM RST916C
	RUGGEDCOM RS416v2 V5.X
	RUGGEDCOM RSG2488 V5.X
	RUGGEDCOM RST2228P
	RUGGEDCOM RSG2100 (32M) V5.X
	RUGGEDCOM RSG907R
	RUGGEDCOM RSL910
	RUGGEDCOM RS900G (32M) V5.X
	RUGGEDCOM RST2228
	RUGGEDCOM RSG909R
	RUGGEDCOM RSG910C

Timeline

Dec 9, 2025 CVE Published
Jan 14, 2026 CVE Updated

References

https://cert-portal.siemens.com/productcert/csaf/ssa-763474.json advisory
https://cert-portal.siemens.com/productcert/html/ssa-763474.html advisory
https://raw.githubusercontent.com/cisagov/CSAF/develop/csaf_files/OT/white/2026/icsa-26-015-05.json advisory
https://www.cisa.gov/news-events/ics-advisories/icsa-26-015-05 advisory
https://www.cisa.gov/news-events/ics-alerts/ics-alert-10-301-01 url
https://www.cisa.gov/resources-tools/resources/ics-recommended-practices url
https://www.cisa.gov/topics/industrial-control-systems url
https://www.cisa.gov/sites/default/files/recommended_practices/NCCIC_ICS-CERT_Defense_in_Depth_2016_S508C.pdf url
https://www.cisa.gov/sites/default/files/publications/Cybersecurity_Best_Practices_for_Industrial_Control_Systems.pdf url
https://www.cisa.gov/news-events/news/targeted-cyber-intrusion-detection-and-mitigation-strategies-update-b url
https://support.industry.siemens.com/cs/ww/en/view/109997649/ fix

Open in Interactive Console →