PatchSiren cyber security CVE debrief
CVE-2024-50264 Siemens CVE debrief
A Use-After-Free vulnerability exists in the Linux kernel's vsock/virtio subsystem, specifically in the handling of the vsk->trans pointer during loopback communication. The vulnerability stems from improper initialization of this pointer, which can result in a dangling pointer condition. This flaw is exploitable locally with low attack complexity and low privileges required, potentially leading to a denial-of-service condition (availability impact rated HIGH). The vulnerability affects Siemens industrial networking products running SINEC OS, including RUGGEDCOM RST2428P and SCALANCE switch families. Siemens has released firmware updates to address this issue.
- Vendor
- Siemens
- Product
- RUGGEDCOM RST2428P (6GK6242-6PA00)
- CVSS
- MEDIUM 5.5
- CISA KEV
- Not listed in stored evidence
- Original CVE published
- 2025-08-12
- Original CVE updated
- 2026-02-25
- Advisory published
- 2025-08-12
- Advisory updated
- 2026-02-25
Who should care
Organizations operating Siemens RUGGEDCOM RST2428P, SCALANCE XC-300/XR-300/XC-400/XR-500WG/XR-500 family, or SCALANCE XCM-/XRM-/XCH-/XRH-300 family switches in industrial control environments. Security teams responsible for OT/ICS infrastructure, network administrators managing industrial Ethernet switches, and compliance officers tracking CVE remediation for critical infrastructure should prioritize assessment and patching.
Technical summary
The vulnerability exists in the vsock/virtio transport layer of the Linux kernel. During loopback communication scenarios, the vsk->trans pointer may not be properly initialized, resulting in a dangling pointer. When this pointer is subsequently dereferenced, a Use-After-Free condition occurs. The CVSS 3.1 score of 5.5 (MEDIUM) reflects local attack requirements with high availability impact but no confidentiality or integrity impact. The vulnerability is present in Siemens industrial networking products that incorporate the affected Linux kernel components within SINEC OS.
Defensive priority
MEDIUM
Recommended defensive actions
- Apply vendor-provided firmware updates to V3.2 or later for affected RUGGEDCOM and SCALANCE products per Siemens advisory SSA-355557
- For SCALANCE XC-300/XR-300/XC-400/XR-500WG/XR-500 family, consult Siemens support documentation for specific configuration guidance
- Implement network segmentation to limit local access to affected industrial control systems
- Monitor for anomalous behavior in vsock/virtio communications on affected systems
- Follow CISA ICS recommended practices for defense-in-depth strategies
- Review and apply Siemens security advisories for SINEC OS components regularly
Evidence notes
The vulnerability description is sourced from CISA CSAF advisory ICSA-25-226-07, which references Siemens ProductCERT advisory SSA-355557. The CVSS 3.1 vector (AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H) indicates local attack vector with high availability impact. The affected products are confirmed through Siemens' CSAF product tree with high confidence.
Official resources
-
CVE-2024-50264 CVE record
CVE.org
-
CVE-2024-50264 NVD detail
NVD
-
Source item URL
cisa_csaf
-
Source reference
Reference
-
Source reference
Reference
-
Source reference
Reference
-
Source reference
Reference
-
Source reference
Reference
-
Source reference
Reference
-
Source reference
Reference
This vulnerability was disclosed via CISA ICS advisory ICSA-25-226-07 on August 12, 2025, with subsequent updates through February 25, 2026. The advisory was republished based on Siemens ProductCERT advisory SSA-355557.