SSA-462066 (Last Update: 2019-11-12): Vulnerability known as TCP SACK PANIC in Industrial Products


2019-11-12 00:00:00 UTC


Multiple industrial products are affected by a vulnerability in the kernel known as TCP SACK PANIC. The vulnerability could allow a remote attacker to cause a denial of service condition.

Siemens has released updates for several affected products, and recommends that customers update to the new version. Siemens is preparing further updates and recommends specific countermeasures until updates are available.