Denial of Service Vulnerability in SCALANCE Products by Siemens
CVE-2024-23814
6.9MEDIUM
Key Information:
- Vendor
Siemens
- Vendor
- CVE Published:
- 11 February 2025
What is CVE-2024-23814?
A denial of service vulnerability exists in the SCALANCE series of network devices from Siemens. When affected devices receive specially crafted packets targeting ICMP fragment re-assembly, they can exhaust their memory resources. This condition may be exploited by an unauthenticated remote attacker, leading to a temporary denial of service of the ICMP service. However, other communication services remain unaffected. Once the attack subsides, the devices will return to normal operation.
Affected Version(s)
SIDOOR ATD430W 0
SIDOOR ATE530G COATED 0
SIDOOR ATE530S COATED 0