PatchSiren cyber security CVE debrief
CVE-2023-52855 Siemens CVE debrief
A NULL pointer dereference vulnerability in the Linux kernel's USB DWC2 (DesignWare Core 2) driver, triggered by driver concurrency conditions. The vulnerability was resolved in the Linux kernel with a fix for the race condition. Siemens has identified this CVE as affecting certain industrial networking products running SINEC OS, including the RUGGEDCOM RST2428P and SCALANCE X-family switches. The CISA CSAF advisory ICSA-25-226-15 (published 2025-08-12, updated 2026-02-25) tracks this vulnerability with multiple revisions correcting affected product listings and removing rejected CVEs. No CVSS score is currently assigned in the source data.
- Vendor
- Siemens
- Product
- RUGGEDCOM RST2428P (6GK6242-6PA00)
- CVSS
- Unknown
- CISA KEV
- Not listed in stored evidence
- Original CVE published
- 2025-08-12
- Original CVE updated
- 2026-02-25
- Advisory published
- 2025-08-12
- Advisory updated
- 2026-02-25
Who should care
Organizations operating Siemens industrial networking infrastructure, particularly those with RUGGEDCOM RST2428P or SCALANCE X-series switches in critical infrastructure environments. OT security teams managing SINEC OS deployments should prioritize firmware updates.
Technical summary
The vulnerability exists in the USB DWC2 (DesignWare Core 2) host controller driver within the Linux kernel. A race condition between concurrent driver operations can lead to a NULL pointer dereference, potentially causing system instability or denial of service. The fix addresses the driver concurrency issue to prevent the dereference. This kernel component is used in Siemens SINEC OS, which powers industrial networking equipment including RUGGEDCOM RST2428P and SCALANCE X-family switches (XC-300/XR-300/XC-400/XR-500WG/XR-500, XCM-/XRM-/XCH-/XRH-300 families).
Defensive priority
medium
Recommended defensive actions
- Review Siemens ProductCERT advisory SSA-613116 for affected product versions and patch availability
- Apply vendor-provided firmware updates for SINEC OS on affected SCALANCE and RUGGEDCOM devices
- Verify USB DWC2 driver configurations on embedded Linux systems using this kernel component
- Monitor CISA ICS advisories for additional guidance on industrial control system protections
Evidence notes
Source: CISA CSAF advisory ICSA-25-226-15, derived from Siemens ProductCERT SSA-613116. The advisory underwent four revisions: initial publication (2025-08-12), corrected affected products (2026-02-12), removed rejected CVEs and unsupported version notes (2026-02-24), and final CISA republication based on Siemens advisory (2026-02-25).
Official resources
-
CVE-2023-52855 CVE record
CVE.org
-
CVE-2023-52855 NVD detail
NVD
-
Source item URL
cisa_csaf
-
Source reference
Reference
-
Source reference
Reference
-
Source reference
Reference
-
Source reference
Reference
-
Source reference
Reference
-
Source reference
Reference
-
Source reference
Reference
2025-08-12