PatchSiren cyber security CVE debrief
CVE-2024-33016 Siemens CVE debrief
CVE-2024-33016 is a Siemens SCALANCE W700 issue reported by CISA as memory corruption triggered when an invalid firehose patch command is invoked. Siemens rates the issue for multiple SCALANCE wireless access point models, and the published remediation is to update affected devices to V3.0.0 or later. Because the CVSS vector includes physical access requirements, the exposure is more constrained than a remotely reachable flaw, but the impact rating remains significant if an attacker can reach the device locally.
- Vendor
- Siemens
- Product
- SCALANCE WAB762-1 (6GK5762-1AJ00-6AA0)
- CVSS
- MEDIUM 6.8
- CISA KEV
- Not listed in stored evidence
- Original CVE published
- 2025-02-11
- Original CVE updated
- 2025-05-06
- Advisory published
- 2025-02-11
- Advisory updated
- 2025-05-06
Who should care
OT and industrial network teams using Siemens SCALANCE WAB762-1, WAM763-1, WAM766-1, WUB762-1, or WUM763-1/WUM766-1 devices should review this advisory, especially where devices may be physically accessible to contractors, maintenance staff, or others with local access. Asset owners, plant engineers, and vulnerability management teams responsible for Siemens wireless infrastructure should prioritize verification of firmware version and remediation status.
Technical summary
The advisory describes a memory corruption condition that occurs when an invalid firehose patch command is invoked on affected Siemens SCALANCE W700 products. CISA’s CSAF record lists 19 affected product variants across the SCALANCE WAB/WAM/WUB/WUM families. The CVSS v3.1 vector is AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H, indicating physical access is required, while successful exploitation could have high confidentiality, integrity, and availability impact. Siemens recommends updating to V3.0.0 or later.
Defensive priority
Medium. The issue is serious, but the physical-access attack requirement narrows near-term exposure in many environments. Prioritize it sooner if affected devices are installed in accessible areas, if local maintenance access is broad, or if the wireless infrastructure is operationally critical.
Recommended defensive actions
- Inventory Siemens SCALANCE WAB762-1, WAM763-1, WAM766-1, WUB762-1, WUM763-1, and WUM766-1 devices against the affected model list in the advisory.
- Confirm firmware versions and plan an upgrade to V3.0.0 or later on all affected devices.
- Restrict physical access to networking equipment and secure any locations where devices can be locally interacted with.
- Review maintenance and contractor procedures to limit unauthorized local access to industrial networking assets.
- Monitor Siemens and CISA advisory updates for any clarification or additional remediation guidance.
Evidence notes
The vulnerability description and affected product list come from the CISA CSAF advisory ICSA-25-044-09 and Siemens reference material linked from the source corpus. The advisory published on 2025-02-11 and was revised on 2025-05-06 for typo fixes only. No KEV listing is present in the supplied data. The remediation in the source corpus is explicitly 'Update to V3.0.0 or later version.'
Official resources
-
CVE-2024-33016 CVE record
CVE.org
-
CVE-2024-33016 NVD detail
NVD
-
Source item URL
cisa_csaf
-
Source reference
Reference
-
Source reference
Reference
-
Source reference
Reference
-
Source reference
Reference
-
Source reference
Reference
-
Source reference
Reference
-
Source reference
Reference
CVE-2024-33016 was published in the supplied source advisory on 2025-02-11 and revised on 2025-05-06 for typo fixes. The advisory is associated with Siemens SCALANCE W700 IEEE 802.11ax products and recommends updating to V3.0.0 or later.