Denial of Service Vulnerability in SIRIUS 3RV2921-5M
Plan Patch7.5SSA-340240Oct 8, 2024
Attack VectorNetwork
Auth RequiredNone
ComplexityLow
User InteractionNone needed
Summary
A vulnerability in SIRIUS 3RV2921-5M (versions prior to V5.1) allows an attacker to cause a denial of service condition via network access, rendering the motor starter unresponsive. The device is used for motor control in industrial automation and critical infrastructure. Siemens has released firmware version V5.1 or later to correct this issue.
What this means
What could happen
An attacker with network access to the SIRIUS motor starter could cause it to become unresponsive, interrupting motor control and potentially stopping critical equipment like pumps or compressors in water or power systems.
Who's at risk
Water utilities and electric utilities operating SIRIUS 3RV2921-5M soft starters or motor control devices for critical equipment such as pumps, compressors, and motors should apply this update during the next planned maintenance window.
How it could be exploited
An attacker sends specially crafted network traffic to the SIRIUS 3RV2921-5M motor starter on the port it listens on. This triggers a condition that causes the device to stop responding to commands, requiring a manual restart to restore operation.
Prerequisites
- Network reachability to SIRIUS 3RV2921-5M on its communication port
- Device running firmware version earlier than V5.1
- No authentication required
remotely exploitableno authentication requiredlow complexityaffects motor control and equipment availability
Exploitability
Low exploit probability (EPSS 0.1%)
Affected products (1)
ProductAffected VersionsFix Status
SIRIUS 3RV2921-5M< V5.15.1
Remediation & Mitigation
0/1
Schedule — requires maintenance window
0/1Patching may require device reboot — plan for process interruption
HOTFIXUpdate SIRIUS 3RV2921-5M firmware to version V5.1 or later
CVEs (1)
↑↓ Navigate · Esc Close
API:
/api/v1/advisories/4d9ab319-6517-491d-90d3-0b23897027aa