CVE-2023-52655 Siemens CVE debrief

Who should care

Organizations running Linux systems with aqc111 USB Ethernet adapters should ensure kernel updates are applied. Industrial operators using affected Siemens networking equipment can disregard this CVE for their Siemens devices based on vendor assessment, but should maintain standard patch management practices.

Technical summary

The vulnerability exists in the Linux kernel's USB aqc111 driver, which handles Aquantia AQtion USB to 5GbE controllers. The fix implements proper packet validation for fixup operations by checking against true limits. This prevents potential out-of-bounds access or incorrect packet processing. Siemens has determined this vulnerability does not actually affect their listed industrial networking products (RUGGEDCOM RST2428P, SCALANCE XC-300/XR-300/XC-400/XR-500WG/XR-500 family, and SCALANCE XCM-/XRM-/XCH-/XRH-300 family), marking the impact assessment as 'Misinformed' in their security advisory.

Defensive priority

low

Recommended defensive actions

• Verify Linux kernel version on systems using aqc111 USB Ethernet adapters and apply relevant kernel updates
• Review Siemens ProductCERT advisory SSA-613116 for definitive product impact assessment
• For Siemens SCALANCE and RUGGEDCOM devices, confirm current firmware version against vendor guidance
• Apply defense-in-depth practices for industrial control systems per CISA recommendations

Evidence notes

The source advisory (ICSA-25-226-15) explicitly marks the impact for affected Siemens products as 'Misinformed' in the threats section, indicating the vulnerability was incorrectly attributed to these products. The CVE description confirms this is a resolved Linux kernel USB driver issue. The advisory was republished on 2026-02-25 based on Siemens ProductCERT SSA-613116 advisory, with previous revisions correcting affected product lists and removing rejected CVEs.

Official resources