all InfoSec news
SSA-102233 V1.7 (Last Update: 2022-02-08): SegmentSmack in VxWorks-based Industrial Devices
Siemens ProductCERT Security Advisories cert-portal.siemens.com
The products listed below contain a vulnerability that could allow remote attackers to affect the availability of the devices under certain conditions. The underlying TCP stack can be forced to make very computation expensive calls for every incoming packet which can lead to a Denial-of-Service.
Siemens has released an update for the SCALANCE X-200IRT switch family and recommends to update to the latest version. Siemens is preparing further updates and recommends specific countermeasures for products where updates are not, or …
attackers availability can computation conditions devices industrial packet products service siemens ssa stack tcp under update vulnerability vxworks