Siemens Third-Party Components in SINEC OS

Source: All CISA Advisories | Added:

The article discusses multiple vulnerabilities in Siemens' third-party components within SINEC OS, which include issues such as improper input validation and use-after-free errors. These vulnerabilities could allow attackers to execute arbitrary code, expose information, or cause a denial-of-service among other impacts.

Impact: Siemens RUGGEDCOM RST2428P, Siemens SCALANCE XC-300/XR-300/XC-400/XR-500WG/XR-500 family, Siemens SCALANCE XCM-/XRM-/XCH-/XRH-300 family

In the Wild: Unknown

Age: Newly disclosed

Remediation: For the most up-to-date information on vulnerabilities, see Siemens' ProductCERT Security Advisories.