PatchSiren cyber security CVE debrief
CVE-2024-46783 Siemens CVE debrief
A vulnerability in the Linux kernel's tcp_bpf subsystem has been identified and resolved. The issue involves an incorrect return value in the tcp_bpf_sendmsg() function, which could lead to denial of service conditions. Siemens has confirmed this vulnerability affects multiple industrial networking products running SINEC OS, including the RUGGEDCOM RST2428P and SCALANCE XC/XR/XCM/XRM/XCH/XRH families. The vulnerability has a CVSS 3.1 score of 5.5 (MEDIUM severity) with a local attack vector requiring low privileges but no user interaction. The primary impact is availability degradation (high severity) with no confidentiality or integrity impacts.
- Vendor
- Siemens
- Product
- RUGGEDCOM RST2428P (6GK6242-6PA00)
- CVSS
- MEDIUM 5.5
- CISA KEV
- Not listed in stored evidence
- Original CVE published
- 2024-04-09
- Original CVE updated
- 2026-05-14
- Advisory published
- 2024-04-09
- Advisory updated
- 2026-05-14
Who should care
Organizations operating Siemens RUGGEDCOM RST2428P, SCALANCE XC-300/XR-300/XC-400/XR-500WG/XR-500 family, or SCALANCE XCM-/XRM-/XCH-/XRH-300 family industrial networking equipment. System administrators responsible for OT/ICS network infrastructure security. Security teams monitoring Linux kernel vulnerabilities in embedded industrial systems.
Technical summary
The vulnerability exists in the Linux kernel's tcp_bpf subsystem, specifically in the tcp_bpf_sendmsg() function. The function's return value handling was incorrect, which could be exploited to cause denial of service conditions. This affects Siemens industrial networking products that incorporate the vulnerable kernel code through SINEC OS. The attack requires local access with low privileges but can result in high availability impact. The fix corrects the return value logic to prevent the identified failure mode.
Defensive priority
medium
Recommended defensive actions
- Apply vendor-provided updates to affected Siemens industrial networking products. For RUGGEDCOM RST2428P and SCALANCE XCM-/XRM-/XCH-/XRH-300 family devices, update to firmware version V3.2 or later. For SCALANCE XC-300/X
- R-300/XC-400/XR-500WG/XR-500 family devices, consult Siemens ProductCERT advisory SSA-355557 for specific configuration guidance and update instructions.
- Implement network segmentation for industrial control systems to limit exposure of affected devices.
- Monitor for anomalous local access attempts to devices running SINEC OS.
- Review and apply CISA's ICS recommended practices for defense-in-depth strategies.
Evidence notes
The vulnerability description indicates a fix was implemented in the Linux kernel for tcp_bpf_sendmsg() return value handling. Siemens ProductCERT advisory SSA-355557 (referenced via CISA ICSA-25-226-07) confirms affected products and remediation paths. The CVSS vector AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H indicates local attack vector with low attack complexity, low privileges required, no user interaction, and high availability impact.
Official resources
-
CVE-2024-46783 CVE record
CVE.org
-
CVE-2024-46783 NVD detail
NVD
-
Source item URL
cisa_csaf
-
Source reference
Reference
-
Source reference
Reference
-
Source reference
Reference
-
Source reference
Reference
-
Source reference
Reference
-
Source reference
Reference
-
Source reference
Reference
2025-08-12