Bulletins

SIEMENS CERT
06/11/2026

SSB-301940 V1.0: Desigo CC patch files identified as malicious by security scanners

SIEMENS CERT
06/09/2026

SSA-864900 V1.8 (Last Update: 2026-06-09): Multiple Vulnerabilities in Fortigate NGFW on RUGGEDCOM APE1808 Devices

Fortinet has published information on vulnerabilities in FortiOS. This advisory lists the related Siemens Industrial products. Siemens is preparing fix versions and recommends to consult and implement the workarounds provided in Fortinet’s upstream security notifications.
SIEMENS CERT
06/09/2026

SSA-967325 V1.1 (Last Update: 2026-06-09): Multiple Vulnerabilities in Palo Alto Networks PAN-OS on RUGGEDCOM APE1808 Devices

Palo Alto Networks has published [1] information on vulnerabilities in PAN-OS. This advisory lists the related Siemens Industrial products affected by these vulnerabilities. Siemens is preparing fix versions and recommends countermeasures for products where fixes are not, or not yet available. Customers are advised to consult and implement the workarounds …
SIEMENS CERT
06/09/2026

SSA-827968 V1.3 (Last Update: 2026-06-09): Vulnerability in Nozomi Guardian/CMC Before V26.2.0 on RUGGEDCOM APE1808 Devices

Nozomi Networks has published information on vulnerabilities in Nozomi Guardian/CMC. This advisory lists the related Siemens Industrial products affected by these vulnerabilities. Siemens has released a new version for RUGGEDCOM APE1808 and recommends to update to the latest version.
SIEMENS CERT
06/09/2026

SSA-962515 V1.6 (Last Update: 2026-06-09): Out of Bounds Read Vulnerability in Industrial Products

Several industrial products contain an out of bounds read vulnerability that could allow an attacker to cause a Blue Screen of Death (BSOD) crash of the underlying Windows kernel, leading to denial of service condition. Siemens has released new versions for several affected products and recommends to update to the …
SIEMENS CERT
06/09/2026

SSA-870926 V1.1 (Last Update: 2026-06-09): Datakit and Parasolid Vulnerabilities in Simcenter Femap

Simcenter Femap is affected by file parsing vulnerabilities in Datakit library and Parasolid Translator Component that could be triggered when the application reads files in IPT or IGS format. If a user is tricked to open a malicious file with the affected application, an attacker could leverage the vulnerability to …
SIEMENS CERT
06/09/2026

SSA-860189 V1.0: Multiple Vulnerabilities in SINEC INS Before V1.0 SP2 Update 6

SINEC INS before V1.0 SP2 Update 6 is affected by multiple vulnerabilities. Siemens has released a new version for SINEC INS and recommends to update to the latest version.
SIEMENS CERT
06/09/2026

SSA-794185 V1.3 (Last Update: 2026-06-09): RADIUS Protocol Susceptible to Forgery Attacks (CVE-2024-3596) - Impact to SIPROTEC, SICAM and Related Products

This advisory documents the impact of CVE-2024-3596 (also dubbed “Blastradius”), a vulnerability in the RADIUS protocol, to SIPROTEC, SICAM and related products. The vulnerability could allow on-path attackers, located between a Network Access Server (the RADIUS client, e.g., a SICAM device) and a RADIUS server, to forge Access-Request packets in …