CVE-2024-45006 Siemens CVE debrief

Who should care

Organizations operating Siemens industrial networking infrastructure including RUGGEDCOM RST2428P switches and SCALANCE family devices in manufacturing, energy, transportation, and critical infrastructure sectors. System administrators responsible for OT/ICS network security and patch management should prioritize assessment and remediation.

Technical summary

The vulnerability resides in the xHCI driver handling of Panther Point USB host controllers. A NULL pointer dereference occurs during full-speed device re-enumeration, leading to system crash and denial of service. The CVSS 3.1 score of 5.5 (MEDIUM) reflects local attack vector, low attack complexity, low privileges required, no user interaction, and high availability impact with no confidentiality or integrity impact. Affected Siemens products incorporate vulnerable Linux kernel versions in their SINEC OS firmware.

Defensive priority

medium

Recommended defensive actions

• Apply vendor-supplied firmware updates to V3.2 or later for RUGGEDCOM RST2428P and SCALANCE XCM-/XRM-/XCH-/XRH-300 family devices
• For SCALANCE XC-300/XR-300/XC-400/XR-500WG/XR-500 family, consult Siemens ProductCERT advisory SSA-355557 for specific configuration guidance and patch availability
• Implement physical access controls to prevent unauthorized local access to affected industrial networking equipment
• Monitor for unexpected USB device re-enumeration events in system logs as potential indicators of exploitation attempts
• Apply defense-in-depth strategies for industrial control systems per CISA recommended practices

Evidence notes

CVE published 2025-08-12 per CISA CSAF advisory ICSA-25-226-07. Modified 2026-02-25 with republication based on Siemens ProductCERT SSA-355557. CVSS 3.1 vector: AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H. CWE-20 (Improper Input Validation) classification per source references.

Official resources