PatchSiren cyber security CVE debrief
CVE-2023-52753 Siemens CVE debrief
This CVE addresses a NULL pointer dereference vulnerability in the Linux kernel's AMD display driver (drm/amd/display). The issue involves improper handling of the timing generator object, which could lead to system instability or denial of service conditions when the timing generator is accessed without proper validation. The vulnerability was resolved by adding appropriate NULL checks before dereferencing the timing generator pointer.
- Vendor
- Siemens
- Product
- RUGGEDCOM RST2428P (6GK6242-6PA00)
- CVSS
- Unknown
- CISA KEV
- Not listed in stored evidence
- Original CVE published
- 2025-08-12
- Original CVE updated
- 2026-02-25
- Advisory published
- 2025-08-12
- Advisory updated
- 2026-02-25
Who should care
Organizations operating Siemens industrial networking equipment including RUGGEDCOM RST2428P switches and SCALANCE XC/XR/XCM/XRM/XCH/XRH series devices, particularly those deployed in critical infrastructure environments where display subsystem stability is essential for operational monitoring.
Technical summary
The vulnerability exists in the drm/amd/display component of the Linux kernel, where a timing generator object could be dereferenced without proper NULL validation. This is a classic NULL pointer dereference (CWE-476) that could result in kernel panic or system crash. The fix involves adding defensive NULL checks before accessing the timing generator structure. While the underlying vulnerability is in the Linux kernel, this CVE is specifically referenced in Siemens industrial networking product advisories, indicating these products incorporate affected kernel versions.
Defensive priority
medium
Recommended defensive actions
- Review Siemens ProductCERT advisory SSA-613116 for specific product impact and patch availability
- Verify kernel version on affected Siemens industrial networking equipment (RUGGEDCOM RST2428P, SCALANCE XC-300/XR-300/XC-400/XR-500WG/XR-500 family, SCALANCE XCM-/XRM-/XCH-/XRH-300 family)
- Apply vendor-provided firmware updates or patches addressing the underlying Linux kernel vulnerability
- Implement network segmentation for industrial control systems per CISA recommended practices
- Monitor for anomalous display or graphics subsystem behavior on affected devices
Evidence notes
The vulnerability description indicates this was a resolved Linux kernel issue in the AMD display driver subsystem. The source advisory (ICSA-25-226-15) from CISA, republished based on Siemens ProductCERT SSA-613116, lists this CVE with a threat category of 'impact' marked as 'Misinformed' for affected Siemens industrial networking products. The advisory underwent multiple revisions between August 2025 and February 2026, with the most recent update on 2026-02-25 correcting affected product listings and removing rejected CVEs. No CVSS score or severity is provided in the source material.
Official resources
-
CVE-2023-52753 CVE record
CVE.org
-
CVE-2023-52753 NVD detail
NVD
-
Source item URL
cisa_csaf
-
Source reference
Reference
-
Source reference
Reference
-
Source reference
Reference
-
Source reference
Reference
-
Source reference
Reference
-
Source reference
Reference
-
Source reference
Reference
2025-08-12