SSA-462066 (Last Update: 2020-09-08): Vulnerability known as TCP SACK PANIC in Industrial Products

Published

2020-09-08 00:00:00 UTC

Summary

Multiple industrial products are affected by a vulnerability in the kernel known as TCP SACK PANIC. The vulnerability could allow a remote attacker to cause a denial of service condition.

Siemens has released updates for several affected products and recommends to update to the new versions. Siemens is preparing further updates and recommends specific countermeasures for products where updates are not, or not yet available.