PatchSiren cyber security CVE debrief
CVE-2024-50184 Siemens CVE debrief
A vulnerability in the virtio_pmem driver could allow a local attacker to cause a denial-of-service condition. The flaw exists because the driver fails to check device status before requesting a flush operation. If a pmem device enters a bad state, the driver may wait indefinitely for host acknowledgment in virtio_pmem_flush(), resulting in a system hang. This vulnerability affects Siemens industrial networking products running SINEC OS, specifically the RUGGEDCOM RST2428P and SCALANCE switch families. The issue was published on August 12, 2025, with the advisory last modified on February 25, 2026, to clarify affected product configurations and remove rejected CVEs. Siemens has released firmware updates to address this vulnerability.
- Vendor
- Siemens
- Product
- RUGGEDCOM RST2428P (6GK6242-6PA00)
- CVSS
- MEDIUM 5.5
- CISA KEV
- Not listed in stored evidence
- Original CVE published
- 2025-08-12
- Original CVE updated
- 2026-02-25
- Advisory published
- 2025-08-12
- Advisory updated
- 2026-02-25
Who should care
Organizations operating Siemens RUGGEDCOM RST2428P switches or SCALANCE XC-300/XR-300/XC-400/XR-500WG/XR-500 and XCM-/XRM-/XCH-/XRH-300 family switches in industrial environments. System administrators responsible for OT network infrastructure, particularly those managing virtualized environments using virtio_pmem devices. Security teams monitoring for local denial-of-service conditions in industrial control systems.
Technical summary
The virtio_pmem driver in the Linux kernel does not verify device status before initiating flush operations. When a pmem device reports a bad status, the driver enters virtio_pmem_flush() and waits indefinitely for host acknowledgment that never arrives, causing a complete system hang. This represents a classic missing validation check (CWE-20) in driver-device communication protocols. The vulnerability requires local access with low privileges and has been assigned CVSS 3.1 score 5.5 (Medium). Affected Siemens products incorporate this vulnerable component in their SINEC OS firmware. Remediation involves updating to firmware version 3.2 or later, which includes the corrected driver implementation with proper device status verification before flush requests.
Defensive priority
medium
Recommended defensive actions
- Apply vendor-provided firmware updates to V3.2 or later for affected RUGGEDCOM and SCALANCE products
- For SCALANCE XC-300/XR-300/XC-400/XR-500WG/XR-500 family, consult Siemens ProductCERT advisory SSA-355557 for specific configuration guidance
- Implement network segmentation for industrial control systems to limit local access
- Follow CISA ICS recommended practices for defense-in-depth strategies
- Monitor vendor security advisories for additional affected product announcements
Evidence notes
The vulnerability description is drawn from the CISA CSAF advisory ICSA-25-226-07, which references Siemens ProductCERT advisory SSA-355557. The affected products are confirmed through the CSAF product tree with high confidence. CVSS 3.1 vector AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H indicates local attack vector with low attack complexity, requiring low privileges, resulting in high availability impact.
Official resources
-
CVE-2024-50184 CVE record
CVE.org
-
CVE-2024-50184 NVD detail
NVD
-
Source item URL
cisa_csaf
-
Source reference
Reference
-
Source reference
Reference
-
Source reference
Reference
-
Source reference
Reference
-
Source reference
Reference
-
Source reference
Reference
-
Source reference
Reference
2025-08-12