CVE-2024-48989

Name of the Vulnerable Software and Affected Versions Bosch Rexroth IndraDrive (all versions)

Description A vulnerability in the PROFINET stack implementation allows an attacker to cause a denial of service by sending arbitrary UDP messages, rendering the device unresponsive. This issue could potentially bring an entire industrial system to a halt. The vulnerability is being actively exploited.

Recommendations For Bosch Rexroth IndraDrive, consider implementing network segmentation and firewalls to protect critical infrastructure as a mitigation measure. At the moment, there is no information about a newer version that contains a fix for this vulnerability.