CVE-2024-46714 Siemens CVE debrief

Who should care

Organizations operating Siemens industrial networking equipment (RUGGEDCOM RST2428P, SCALANCE XC/XR/XCM/XRM/XCH/XRH families) that incorporate AMD graphics/display components. Industrial control system operators using SINEC OS should monitor for vendor patches.

Technical summary

The vulnerability exists in the AMD display driver's writeback scaler (wbscl) component. The wbscl_set_scaler_filter function did not validate whether the filter parameter was null before dereferencing it. The filter parameter could be null when returned from wbscl_get_filter_coeffs_16p. The fix adds a null check to skip processing when filter is null, preventing potential kernel crashes or undefined behavior from null pointer dereference.

Defensive priority

medium

Recommended defensive actions

• Review Siemens ProductCERT advisory SSA-355557 for affected product configurations and patch availability
• Verify if deployed Siemens industrial networking products (RUGGEDCOM RST2428P, SCALANCE XC-300/XR-300/XC-400/XR-500WG/XR-500 family, SCALANCE XCM-/XRM-/XCH-/XRH-300 family) incorporate the vulnerable AMD display driver
• Apply vendor-provided firmware updates when available per Siemens security advisory guidance
• Monitor CISA ICS advisories for updates to ICSA-25-226-07
• Implement network segmentation for industrial control systems per CISA recommended practices
• Follow defense-in-depth strategies for industrial control system environments

Evidence notes

The vulnerability description indicates a defensive null pointer check was added to wbscl_set_scaler_filter to handle cases where wbscl_get_filter_coeffs_16p returns null. Siemens ProductCERT SSA-355557 is the canonical advisory source. CISA ICSA-25-226-07 was republished on 2026-02-25 based on the Siemens advisory. The threat category in the source CSAF data is marked 'Misinformed' for affected product IDs CSAFPID-0006, CSAFPID-0002, and CSAFPID-0003.

Official resources