SSA-275839 (Last Update: 2019-02-12): Denial-of-Service Vulnerability in Industrial Products

Published

2019-02-12 00:00:00 UTC

Summary

Several industrial products are affected by a vulnerability that could allow an attacker to cause a Denial-of-Service condition via PROFINET DCP network packets under certain circumstances. Precondition for this scenario is a direct Layer 2 access to the affected products.

Siemens has released updates for several affected products, is working on updates for the remaining affected products and recommends specific countermeasures until fixes are available.