CVE-2023-51780 Siemens CVE debrief

Who should care

Organizations operating Siemens RUGGEDCOM RST2428P switches or SCALANCE X-family industrial Ethernet switches in critical infrastructure, manufacturing, or utility environments. Security teams managing Linux-based industrial control systems with ATM networking components. Network administrators responsible for patch management in OT/ICS environments.

Technical summary

The vulnerability is a use-after-free condition in the Linux kernel's ATM (Asynchronous Transfer Mode) implementation. The affected function do_vcc_ioctl in net/atm/ioctl.c fails to properly handle concurrent access during vcc_recvmsg operations, allowing a race condition that can lead to memory corruption. This is classified under CWE-416 (Use After Free). The flaw was resolved in Linux kernel 6.6.8. Siemens has incorporated this fix into SINEC OS 3.1 and later versions for affected SCALANCE and RUGGEDCOM product families.

Defensive priority

medium

Recommended defensive actions

• Update affected Siemens devices to SINEC OS 3.1 or later, as versions below 3.1 are no longer supported for SCALANCE XC-300/XR-300/XC-400/XR-500WG/XR-500 family per advisory revision history
• Apply Linux kernel updates to version 6.6.8 or later to address the underlying use-after-free vulnerability in net/atm/ioctl.c
• Review network segmentation for ATM protocol usage in industrial control environments
• Monitor Siemens ProductCERT advisory SSA-613116 for additional product-specific guidance
• Implement defense-in-depth strategies for industrial control systems per CISA recommended practices

Evidence notes

CVE published 2025-08-12 per CISA CSAF advisory ICSA-25-226-15. Advisory modified 2026-02-25 with republication based on Siemens ProductCERT SSA-613116. Source indicates impact assessment as 'Misinformed' for affected product IDs. Kernel fix available in 6.6.8 and later.

Official resources