CVE-2017-9945

Name of the Vulnerable Software and Affected Versions Siemens 7KM PAC Switched Ethernet PROFINET expansion module versions prior to V2.1.3

Description A Denial-of-Service condition could be induced by a specially crafted PROFINET DCP packet sent as a local Ethernet (Layer 2) broadcast. The affected component requires a manual restart via the main device to recover.

Recommendations For versions prior to V2.1.3, update to version V2.1.3 or later to resolve the issue. As a temporary workaround, consider restricting access to the local Ethernet (Layer 2) broadcast to minimize the risk of exploitation.