CVE-2024-35930 Siemens CVE debrief

Who should care

Industrial control system operators using Siemens SIMATIC S7-1500 TM MFP with Fibre Channel connectivity; security teams managing OT/ICS environments; Linux kernel maintainers for lpfc driver deployments

Technical summary

The lpfc_rcv_padisc() function in the Emulex LightPulse Fibre Channel SCSI driver fails to properly free allocated memory under certain error conditions, resulting in a memory leak (CWE-401). This resource exhaustion vulnerability requires local access with low privileges to trigger. The affected code path processes PADISC (Port Address Discovery) ELS frames in Fibre Channel environments. On Siemens SIMATIC S7-1500 TM MFP systems, this vulnerability exists within the embedded GNU/Linux subsystem. No patch is currently available from Siemens as of the last advisory update.

Defensive priority

medium

Recommended defensive actions

• Restrict interactive shell access to the GNU/Linux subsystem to trusted personnel only
• Build and run applications exclusively from trusted sources
• Monitor for abnormal memory consumption in lpfc driver operations
• Apply vendor security updates when available for the SIMATIC S7-1500 TM MFP
• Implement network segmentation for industrial control systems per CISA ICS recommended practices

Evidence notes

The vulnerability description is sourced from the Linux kernel commit message for the lpfc driver fix. Siemens confirmed affected products through their SSA-265688 security advisory. The CVSS vector (AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H) indicates local exploitation with availability impact only.

Official resources