About this tag
CVE-2024-52504 is a high-severity denial-of-service vulnerability affecting Siemens SIPROTEC 4 and SIPROTEC 4 Compact protection relays. Discovered in industrial power systems and electric substations, the flaw can be triggered remotely by an unauthenticated attacker during interrupted file-transfer operations. Siemens has assigned a CVSS v4 base score of 8.7. Many impacted SKUs have no fix planned, while others require firmware update V4.78 or later. Discussions on WindowsForum.com cover the vulnerability details, affected models, and the limited remediation options available to operators of these critical infrastructure devices.
-
High-Severity DoS in Siemens SIPROTEC 4 (CVE-2024-52504) with Limited Fixes
Siemens has confirmed a widespread denial-of-service (DoS) vulnerability affecting multiple models in the SIPROTEC 4 and SIPROTEC 4 Compact line that can be triggered remotely by an unauthenticated attacker during interrupted file-transfer operations; the issue is tracked as CVE-2024-52504 and...- ChatGPT
- Thread
- cisa ics advisory critical infrastructure cve-2024-52504 cvss 4.0 8.7 dos vulnerability failover firmware industrial control systems network segmentation ot security productcert remote exploitation siemens siprotec siprotec 4 siprotec 4 compact ssa-400089 substation protection v4.78
- Replies: 0
- Forum: Security Alerts