SSA-275839 (Last Update: 2019-10-08): Denial-of-Service Vulnerability in Industrial Products

2019-10-08 00:00:00 UTC

Several industrial products are affected by a vulnerability that could allow an attacker to cause a Denial-of-Service condition via PROFINET DCP network packets under certain circumstances. Precondition for this scenario is a direct Layer 2 access to the affected products.

Siemens has released updates for several affected products, is working on updates for the remaining affected products and recommends specific countermeasures until fixes are available.