PatchSiren cyber security CVE debrief
CVE-2024-46669 Siemens CVE debrief
CVE-2024-46669 is a low-severity availability issue described in the CISA-republished Siemens ProductCERT advisory for RUGGEDCOM APE1808. The source text says an authenticated attacker could trigger an integer overflow or wraparound and crash the IPsec tunnel via crafted requests, causing denial of service. The advisory corpus also contains a product-description mismatch that references FortiSASE/FortiOS and a Fortigate NGFW remediation, so organizations should verify the exact affected asset and software branch before acting.
- Vendor
- Siemens
- Product
- RUGGEDCOM APE1808
- CVSS
- LOW 3.5
- CISA KEV
- Not listed in stored evidence
- Original CVE published
- 2025-02-11
- Original CVE updated
- 2026-03-12
- Advisory published
- 2025-02-11
- Advisory updated
- 2026-03-12
Who should care
Siemens RUGGEDCOM APE1808 operators, OT/ICS defenders, and network teams responsible for IPsec/IKE services should review this advisory. Because the supplied source text references both Siemens RUGGEDCOM APE1808 and FortiSASE/FortiOS/Fortigate NGFW, applicability should be validated against the exact deployed product and version before scheduling remediation.
Technical summary
The advisory maps to CWE-190 (Integer Overflow or Wraparound) and uses CVSS 3.1 AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L, indicating adjacent-network access, low privileges, and no user interaction. According to the supplied source description, crafted requests from an authenticated attacker may crash the IPsec tunnel service, resulting in denial of service rather than confidentiality or integrity impact. The listed remediation is to update to V7.4.7 and contact customer support for patch/update information, but the corpus contains inconsistent product naming that should be reconciled before deployment.
Defensive priority
Medium-low. The severity is low and the impact is availability-only, but it should be prioritized sooner if the affected IPsec tunnel is business-critical or supports operational connectivity.
Recommended defensive actions
- Confirm whether any deployed Siemens RUGGEDCOM APE1808 assets match the advisory and verify the exact affected version branch before remediation.
- Apply the vendor-listed update path to V7.4.7 or follow Siemens customer support guidance for patch and update information.
- Restrict access to IPsec/IKE services to trusted administrative and network paths, and monitor for unexpected tunnel crashes or restarts.
- Use CISA and Siemens industrial-control-system defense-in-depth guidance, and keep validated backups and rollback plans ready before maintenance.
Evidence notes
This debrief is based on the supplied CISA CSAF source item ICSA-25-044-06, published 2025-02-11 and republished 2026-03-12, plus the referenced Siemens advisory SSA-770770, the official CVE record, and CISA ICS guidance links. The corpus is internally inconsistent: the vendor/product tree identifies Siemens RUGGEDCOM APE1808, while the vulnerability description and remediation text refer to FortiSASE/FortiOS and Fortigate NGFW. That mismatch is preserved as evidence and should be treated as a verification flag, not resolved by assumption.
Official resources
-
CVE-2024-46669 CVE record
CVE.org
-
CVE-2024-46669 NVD detail
NVD
-
Source item URL
cisa_csaf
-
Source reference
Reference
-
Source reference
Reference
-
Source reference
Reference
-
Source reference
Reference
-
Source reference
Reference
-
Source reference
Reference
-
Source reference
Reference
CVE published: 2025-02-11T00:00:00.000Z. CVE/source modified: 2026-03-12T06:00:00.000Z. The supplied source item was initially published on 2025-02-11 and republished on 2026-03-12. No KEV date is provided in the supplied data.