Primary

Context

Siemens SIMATIC RTLS Locating Manager Denial-of-Service Vulnerability

Vulnerability

Patched

A denial-of-service vulnerability has been identified in Siemens SIMATIC RTLS Locating Manager, affecting all versions prior to 3.3. The issue arises because affected devices do not properly validate input sent to their listening port on the local loopback interface. This lack of validation could allow an unauthenticated local attacker to disrupt service.

Impact

Exploitation of this vulnerability can lead to a denial-of-service condition, causing the application to become unresponsive or unavailable.

Remediation

Users are advised to update SIMATIC RTLS Locating Manager to version 3.3 or later. Additional guidance can be found on the Siemens support website.

Added: Aug 12, 2025, 12:49 PM

Updated: Aug 12, 2025, 3:09 PM

Vulnerability Rating

Custom Algorithm

spread

0.3

impact

2.5

exploitability

4.9

remediation

7.7

relevance

0.4

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.3

impact

2.5

exploitability

4.9

remediation

7.7

relevance

0.4

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Siemens SIMATIC RTLS Locating Manager Denial-of-Service Vulnerability

Vulnerability

Impact

Remediation

Affected Products

Siemens SIMATIC RTLS Locating Manager

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating