all InfoSec news
SSA-459643 V1.2 (Last Update: 2023-04-11): Denial of Service Vulnerability in RUGGEDCOM ROS before V5.6.0
Siemens ProductCERT Security Advisories cert-portal.siemens.com
RUGGEDCOM ROS-based devices are vulnerable to a denial of service attack (Slowloris). By sending partial HTTP requests nonstop, with none completed, the affected web servers will be waiting for the completion of each request, occupying all available HTTP connections. The web server recovers by itself once the attack ends.
Siemens has released updates for the affected products and recommends to update to the latest versions.
attack connections denial of service denial of service attack devices http http requests latest partial products request requests ros ruggedcom server servers service siemens slowloris ssa the web update updates vulnerability vulnerable web web server