Siemens RUGGEDCOM Products Denial-of-Service Vulnerability via Malformed TLS Handshake

A denial-of-service vulnerability has been identified in multiple Siemens RUGGEDCOM products, including the RUGGEDCOM i800, i801, i802, i803, M2100, M2200, M969, RMC30, RMC8388 V4.X, RMC8388 V5.X (All versions < V5.10.0), RP110, RS1600, RS1600F, RS1600T, RS400, RS401, RS416, RS416P, RS416Pv2 V4.X, RS416Pv2 V5.X (All versions < V5.10.0), RS416v2 V4.X, RS416v2 V5.X (All versions < V5.10.0), RS8000, RS8000A, RS8000H, RS8000T, RS900, RS900 (32M) V4.X, RS900 (32M) V5.X (All versions < V5.10.0), RS900G, RS900G (32M) V4.X, RS900G (32M) V5.X (All versions < V5.10.0), RS900GP, RS900L, RS900M-GETS-C01, RS900M-GETS-XX, RS900M-STND-C01, RS900M-STND-XX, RS900W, RS910, RS910L, RS910W, RS920L, RS920W, RS930L, RS930W, RS940G, RS969, RSG2100, RSG2100 (32M) V4.X, RSG2100 (32M) V5.X (All versions < V5.10.0), RSG2100P, RSG2100P (32M) V4.X, RSG2100P (32M) V5.X (All versions < V5.10.0), RSG2200, RSG2288 V4.X, RSG2288 V5.X (All versions < V5.10.0), RSG2300 V4.X, RSG2300 V5.X (All versions < V5.10.0), RSG2300P V4.X, RSG2300P V5.X (All versions < V5.10.0), RSG2488 V4.X, RSG2488 V5.X (All versions < V5.10.0), RSG907R (All versions < V5.10.0), RSG908C (All versions < V5.10.0), RSG909R (All versions < V5.10.0), RSG910C (All versions < V5.10.0), RSG920P V4.X, RSG920P V5.X (All versions < V5.10.0), RSL910 (All versions < V5.10.0), RST2228 (All versions < V5.10.0), RST2228P (All versions < V5.10.0), RST916C (All versions < V5.10.0), RST916P (All versions < V5.10.0). The vulnerability arises because affected devices do not properly process malformed TLS handshake messages, potentially allowing an attacker with network access to the device's web server to cause a crash, disrupting both the web server and the device itself.

Impact

Exploitation of this vulnerability leads to a crash of the web server and the device, causing a denial-of-service condition.

Remediation

For RUGGEDCOM ROS V5.X family, users should update to version 5.10.0 or later. For RUGGEDCOM ROS V4.X family, no fix is currently available. As a general security measure, it is recommended to protect network access to devices with appropriate mechanisms and to follow Siemens' operational guidelines for Industrial Security.