CVE-2024-6657 silabs.com CVE debrief

Who should care

Organizations deploying Siemens SENTRON Powercenter devices with BLE connectivity; industrial control system operators using BLE-enabled field devices; security teams responsible for OT/ICS network availability and incident response.

Technical summary

The vulnerability exists in the BLE protocol stack implementation where a peripheral device becomes unresponsive when subjected to rapid connect/disconnect cycles from multiple central devices. This state persists until a hard reset is performed. The attack vector requires proximity for BLE communication and multiple coordinating or independent central devices. The June 2025 advisory revision indicates the originally listed SENTRON Powercenter products are not affected, suggesting potential initial misidentification or scope correction in the disclosure process.

Defensive priority

medium

Recommended defensive actions

• Review current Siemens security advisory SSA-620799 for definitive affected product information
• Verify BLE peripheral device behavior in operational environments for unexpected connection handling
• Implement network segmentation for BLE-enabled industrial devices where feasible
• Monitor for anomalous connection patterns from multiple central devices to single peripherals
• Establish hard reset procedures for affected peripheral devices in incident response plans
• Subscribe to CISA ICS advisories and Siemens ProductCERT notifications for updates

Evidence notes

CVE published 2024-12-10 per CISA ICS advisory ICSA-24-347-10. Advisory modified 2025-06-10 to clarify that SENTRON Powercenter devices are not affected. Source: CISA CSAF advisory with revision history documenting the clarification.

Official resources