PatchSiren cyber security CVE debrief
CVE-2024-50565 Siemens CVE debrief
CVE-2024-50565 was published on 2025-02-11 and later republished/updated on 2026-03-12 in the supplied CISA CSAF record. Based on the source corpus, the affected product is Siemens RUGGEDCOM APE1808, and the advisory links to Siemens ProductCERT SSA-770770. The CVE text describes a man-in-the-middle impersonation scenario involving FGFM authentication and Fortinet management products, so the supplied data appears internally inconsistent and should be validated against the Siemens advisory before taking product-specific action.
- Vendor
- Siemens
- Product
- RUGGEDCOM APE1808
- CVSS
- LOW 3.1
- CISA KEV
- Not listed in stored evidence
- Original CVE published
- 2025-02-11
- Original CVE updated
- 2026-03-12
- Advisory published
- 2025-02-11
- Advisory updated
- 2026-03-12
Who should care
OT and network security teams responsible for Siemens RUGGEDCOM APE1808, especially environments that rely on vendor management integrations or remotely administered industrial devices. Because the source data mixes Siemens and Fortinet product details, operations teams should confirm whether their deployed Siemens system is actually affected before scheduling remediation.
Technical summary
The supplied description identifies a CWE-923 improper restriction of communication channel to intended endpoints issue that could let an unauthenticated attacker in a man-in-the-middle position impersonate a management device by intercepting an FGFM authentication request. The advisory metadata, however, attributes the issue to Siemens RUGGEDCOM APE1808 and points to Siemens ProductCERT SSA-770770. The CVSS vector provided is CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:N, which corresponds to low severity with limited integrity impact and no confidentiality or availability impact in the supplied record.
Defensive priority
Moderate for validation, lower for emergency response. The CVSS score is low, but the man-in-the-middle precondition and the metadata mismatch make asset verification important. Confirm whether RUGGEDCOM APE1808 deployments are in scope, then apply vendor guidance from the Siemens advisory and CISA CSAF update.
Recommended defensive actions
- Verify whether any Siemens RUGGEDCOM APE1808 assets in your environment match the affected product listing in the supplied CSAF advisory.
- Review Siemens ProductCERT SSA-770770 and the CISA ICS advisory for the final vendor guidance and any product-specific remediation steps.
- If affected, apply the vendor-recommended update path and schedule maintenance according to OT change-control procedures.
- Prioritize network controls that reduce man-in-the-middle risk on management paths, including segmentation and trusted management-channel protections.
- Treat the Fortinet-related text in the CVE description as a data-quality issue until it is reconciled with the Siemens advisory and asset inventory.
Evidence notes
The source item is the CISA CSAF advisory ICSA-25-044-06, published 2025-02-11 and revised through 2026-03-12. Its metadata names Siemens as vendor and RUGGEDCOM APE1808 as the affected product, with references to Siemens SSA-770770 JSON and HTML. The CVE description text supplied in the corpus refers to Fortinet FortiOS/FortiProxy/FortiManager/FortiAnalyzer/FortiVoice/FortiWeb and FGFM authentication, which conflicts with the Siemens product metadata. No KEV entry is present in the supplied timeline.
Official resources
-
CVE-2024-50565 CVE record
CVE.org
-
CVE-2024-50565 NVD detail
NVD
-
Source item URL
cisa_csaf
-
Source reference
Reference
-
Source reference
Reference
-
Source reference
Reference
-
Source reference
Reference
-
Source reference
Reference
-
Source reference
Reference
-
Source reference
Reference
Publicly disclosed in the supplied advisory on 2025-02-11, with later CISA republication/update on 2026-03-12. No KEV listing is included in the provided timeline.