PatchSiren cyber security CVE debrief
CVE-2023-52847 Siemens CVE debrief
A use-after-free vulnerability in the Linux kernel's BtTV (Brooktree TV) media driver could allow local attackers to cause memory corruption. The flaw exists in the btv->timeout timer handling, where improper synchronization may lead to accessing freed memory. Siemens has assessed this vulnerability as affecting certain industrial network infrastructure products running SINEC OS, which incorporates the vulnerable Linux kernel components. The vulnerability was resolved in the upstream Linux kernel. Organizations should apply vendor-provided updates and follow defense-in-depth practices for industrial control systems.
- Vendor
- Siemens
- Product
- RUGGEDCOM RST2428P (6GK6242-6PA00)
- CVSS
- Unknown
- CISA KEV
- Not listed in stored evidence
- Original CVE published
- 2025-08-12
- Original CVE updated
- 2026-02-25
- Advisory published
- 2025-08-12
- Advisory updated
- 2026-02-25
Who should care
Organizations operating Siemens SCALANCE X-family switches, RUGGEDCOM RST2428P devices, or other industrial network infrastructure running SINEC OS should prioritize assessment. System administrators responsible for OT/ICS environments, security teams managing industrial control system assets, and vendors integrating Linux kernel media drivers into embedded products should monitor this vulnerability.
Technical summary
The vulnerability resides in the BtTV (Brooktree TV) video capture driver within the Linux kernel media subsystem. The btv->timeout timer, used for handling capture timeouts, can trigger a use-after-free condition due to improper synchronization between timer cancellation and device teardown paths. When the timer fires after the associated btv structure has been freed, memory corruption occurs. This affects embedded Linux systems incorporating the vulnerable kernel code, including Siemens industrial networking products that utilize the SINEC OS platform built on affected kernel versions.
Defensive priority
medium
Recommended defensive actions
- Apply vendor-provided firmware updates for affected Siemens SCALANCE and RUGGEDCOM products when available
- Verify SINEC OS version and confirm it is a supported release (3.1 or later per vendor guidance)
- Implement network segmentation for industrial control systems to limit exposure of vulnerable devices
- Monitor vendor security advisories for additional affected product announcements
- Follow CISA ICS recommended practices for defense-in-depth strategies
Evidence notes
The vulnerability description indicates a use-after-free error in the btv->timeout timer within the Linux kernel's media/bttv driver. Siemens ProductCERT advisory SSA-613116 (referenced via CISA ICSA-25-226-15) identifies affected products including RUGGEDCOM RST2428P and SCALANCE X-family devices. The source advisory underwent multiple revisions between February 2026, with the final update on 2026-02-25 reflecting CISA republication based on the Siemens advisory. No CVSS score is available in the source data. The threat assessment in the source marks impact as 'Misinformed' for the listed product IDs, suggesting potential analysis complexity or initial misattribution that was subsequently clarified.
Official resources
-
CVE-2023-52847 CVE record
CVE.org
-
CVE-2023-52847 NVD detail
NVD
-
Source item URL
cisa_csaf
-
Source reference
Reference
-
Source reference
Reference
-
Source reference
Reference
-
Source reference
Reference
-
Source reference
Reference
-
Source reference
Reference
-
Source reference
Reference
2025-08-12