CVE-2024-42095 Siemens CVE debrief

Who should care

Organizations operating Linux-based industrial systems with OMAP serial interfaces should verify their exposure. Siemens customers can reference ProductCERT advisory SSA-355557 for definitive product impact status.

Technical summary

The 8250_omap serial driver in the Linux kernel contains a flaw where an erroneous timeout condition can be triggered, potentially resulting in an interrupt storm. This could cause system performance degradation or denial of service on systems utilizing this specific UART driver. The vulnerability is rated CVSS 5.5 (MEDIUM). Siemens has assessed that their products are not affected by this CVE, marking it as 'Misinformed' in their security advisory.

Defensive priority

low

Recommended defensive actions

• Verify serial driver configurations on Linux-based OT systems using 8250_omap driver
• Monitor for interrupt storm conditions on serial-dependent industrial devices
• Review Siemens ProductCERT advisory SSA-355557 for definitive product impact assessment
• Apply standard ICS defense-in-depth practices per CISA guidance

Evidence notes

The source advisory (ICSA-25-226-07) explicitly lists this CVE with impact category 'Misinformed' for all referenced product IDs (CSAFPID-0006, CSAFPID-0002, CSAFPID-0003), indicating Siemens products are not actually affected by this vulnerability despite initial inclusion. The CVE description describes a Linux kernel serial driver issue (8250_omap) that could cause interrupt storms.

Official resources