Siemens PROFINET-IO Stack (Update A)

Published

2020-03-10 15:00:42 UTC

Summary

This updated advisory is a follow-up to the original advisory titled ICSA-20-042-04 Siemens PROFINET-IO Stack that was published February 11, 2020, to the ICS webpage on us-cert.gov. This advisory contains mitigations for an internal resource allocation vulnerability in the Siemens PROFINET-IO Stack, which could be exploited to create a denial-of-service condition in products that include the vulnerable stack.