Siemens SCALANCE and RUGGEDCOM Devices Out-of-bounds Read (CVE-2024-53150)

Version 1.2

Nov 23, 2025, 9:24 PM

CISA reference
CVSS metrics ("CVSSv2 score" set to 6.2)
CVSS metrics ("CVSSv2 vector" set to "CVSS2#AV:L/AC:L/Au:S/C:C/I:N/A:C")
CVSS metrics ("CVSSv3 score" set to 7.1)
CVSS metrics ("CVSSv3 vector" set to "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H")
CVSS temporal metrics ("CVSSv2 temporal vector" set to "CVSS2#E:F/RL:OF/RC:C")
CVSSv2 severity (based on CVE-2024-53150, severity decreased from "High" to "Medium")
CVSSv3 severity (based on None, severity increased from "Medium" to "High")
Exploit attributes ("Exploit available" set to "True")
Exploit attributes ("Exploitability ease" changed from "No known exploits are available" to "Exploits are available")