CVE-2023-52858 Siemens CVE debrief

Who should care

Organizations running custom Linux builds on Mediatek MT7629 platforms should verify kernel patch status. Users of Siemens RUGGEDCOM and SCALANCE industrial networking products can reference Siemens ProductCERT guidance indicating this CVE is misinformed for their environments.

Technical summary

The vulnerability exists in the Linux kernel's Mediatek clock driver for MT7629 platforms (clk-mt7629). The fix adds a check for the return value of `mtk_alloc_clk_data`, which allocates clock data structures. Without this check, a failed allocation could lead to null pointer dereference when the returned pointer is subsequently dereferenced. The resolution was implemented in the upstream Linux kernel. Siemens products incorporating this kernel component have been assessed as not affected ('Misinformed' classification in the threat data), suggesting their specific configurations or kernel versions do not expose this vulnerability.

Defensive priority

low

Recommended defensive actions

• Review Siemens ProductCERT advisory SSA-613116 for product-specific impact assessment
• Verify kernel version and Mediatek clock driver implementation in affected systems if running custom Linux builds
• Apply standard kernel security update practices for systems using Mediatek MT7629 platform
• Monitor CISA ICS advisories for updates to ICSA-25-226-15

Evidence notes

The vulnerability description indicates a kernel-level fix in the Mediatek clock driver (clk-mt7629) to add validation for `mtk_alloc_clk_data` return values. The source advisory (ICSA-25-226-15) explicitly marks this CVE with threat category 'impact' and details 'Misinformed' for Siemens products including RUGGEDCOM RST2428P and SCALANCE X families. The advisory was initially published 2025-08-12 and most recently updated 2026-02-25 based on Siemens ProductCERT SSA-613116.

Official resources