all InfoSec news
SSA-592007 V2.0 (Last Update: 2023-04-11): Denial of Service Vulnerability in Industrial Products
Siemens ProductCERT Security Advisories cert-portal.siemens.com
Several industrial controllers are affected by a security vulnerability that could allow an attacker to cause a denial of service condition via PROFINET DCP network packets under certain circumstances. Precondition for this scenario is a direct OSI Layer 2 access to the affected products. PROFIBUS interfaces are not affected.
Siemens has released updates for several affected products and recommends to update to the latest versions. Siemens recommends specific countermeasures for products where updates are not, or not yet available.
access attacker controllers denial of service industrial layer 2 network packets products scenario security security vulnerability service ssa under update vulnerability