PatchSiren cyber security CVE debrief
CVE-2024-38780 Siemens CVE debrief
A vulnerability in the Linux kernel's dma-buf/sw-sync subsystem could allow a local attacker to cause a denial of service condition. The issue stems from improper interrupt handling in the sync_print_obj() function, where IRQs were incorrectly enabled. This vulnerability affects Siemens industrial networking products running SINEC OS, specifically the RUGGEDCOM RST2428P and SCALANCE X-family switches. The CVSS 3.1 score of 5.5 (MEDIUM) reflects local attack vector with low attack complexity and low privileges required, resulting in high availability impact. Siemens has released firmware updates to address this issue.
- Vendor
- Siemens
- Product
- RUGGEDCOM RST2428P (6GK6242-6PA00)
- CVSS
- MEDIUM 5.5
- CISA KEV
- Not listed in stored evidence
- Original CVE published
- 2024-04-09
- Original CVE updated
- 2026-05-14
- Advisory published
- 2024-04-09
- Advisory updated
- 2026-05-14
Who should care
Organizations operating Siemens industrial networking infrastructure, particularly those using RUGGEDCOM RST2428P or SCALANCE XC-300/XR-300/XC-400/XR-500WG/XR-500 family switches in critical infrastructure environments. System administrators responsible for maintaining SINEC OS-based devices should prioritize firmware updates. Security teams in manufacturing, energy, and transportation sectors relying on these industrial Ethernet switches for operational technology networks.
Technical summary
The vulnerability exists in the Linux kernel's dma-buf/sw-sync subsystem, specifically in the sync_print_obj() function. The function incorrectly enabled interrupts (IRQ) when it should not have, potentially leading to race conditions or system instability. This is classified under CWE-667 (Improper Locking). The issue has been resolved in the upstream Linux kernel. Siemens industrial networking products incorporating the vulnerable kernel code are affected, including RUGGEDCOM RST2428P and SCALANCE X-family switches running SINEC OS versions prior to 3.1. Successful exploitation requires local access with low privileges and can result in denial of service through system crash or hang.
Defensive priority
medium
Recommended defensive actions
- Apply vendor firmware updates to V3.1 or later for affected SCALANCE and RUGGEDCOM devices
- Review Siemens ProductCERT advisory SSA-613116 for detailed patch availability and installation procedures
- Implement network segmentation for industrial control systems to limit local attack vectors
- Follow CISA ICS recommended practices for defense-in-depth strategies
- Monitor for anomalous system behavior or unexpected reboots on affected devices
Evidence notes
The vulnerability description indicates a resolved Linux kernel issue in dma-buf/sw-sync where IRQ was incorrectly enabled from sync_print_obj(). The CVSS vector (AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H) confirms local attack vector with availability impact. Siemens ProductCERT advisory SSA-613116 provides vendor remediation guidance. CISA advisory ICSA-25-226-15 was initially published 2025-08-12 and subsequently updated 2026-02-25 to reflect corrections to affected products list and removal of rejected CVEs.
Official resources
-
CVE-2024-38780 CVE record
CVE.org
-
CVE-2024-38780 NVD detail
NVD
-
Source item URL
cisa_csaf
-
Source reference
Reference
-
Source reference
Reference
-
Source reference
Reference
-
Source reference
Reference
-
Source reference
Reference
-
Source reference
Reference
-
Source reference
Reference
2025-08-12