CVE-2024-46750 Siemens CVE debrief

Who should care

Organizations operating Siemens industrial networking infrastructure, particularly in critical infrastructure sectors. System administrators managing RUGGEDCOM and SCALANCE devices should prioritize firmware updates. Security teams monitoring OT/ICS environments should track this vulnerability for potential local attack vectors from compromised endpoints.

Technical summary

The vulnerability stems from a missing bridge lock implementation in pci_bus_lock() within the Linux kernel's PCI subsystem. This locking deficiency creates a race condition window that local attackers with low privileges can exploit to trigger denial-of-service conditions. The CVSS 3.1 vector (AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H) indicates local attack vector, low attack complexity, low privileges required, no user interaction, and high availability impact with no confidentiality or integrity impact. Affected Siemens products include RUGGEDCOM RST2428P and multiple SCALANCE industrial Ethernet switch families running SINEC OS.

Defensive priority

medium

Recommended defensive actions

• Apply vendor-provided firmware updates to V3.2 or later for affected RUGGEDCOM and SCALANCE products
• Review Siemens ProductCERT advisory SSA-355557 for specific configuration guidance on SCALANCE XC-300/XR-300/XC-400/XR-500WG/XR-500 family
• Implement defense-in-depth strategies for industrial control systems per CISA recommended practices
• Monitor CISA ICS advisories for additional updates to affected product listings

Evidence notes

The vulnerability was resolved by adding the missing bridge lock to pci_bus_lock() in the Linux kernel. CISA published advisory ICSA-25-226-07 on 2025-08-12, with subsequent updates through 2026-02-25 to correct affected product listings and clarify configuration details. Siemens ProductCERT issued SSA-355557 as the authoritative vendor advisory.

Official resources