CVE-2024-23814

Name of the Vulnerable Software and Affected Versions: SCALANCE WAB762-1 versions prior to V3.0.0 SCALANCE WAM763-1 versions prior to V3.0.0 SCALANCE WAM763-1 (ME) versions prior to V3.0.0 SCALANCE WAM763-1 (US) versions prior to V3.0.0 SCALANCE WAM766-1 versions prior to V3.0.0 SCALANCE WAM766-1 (ME) versions prior to V3.0.0 SCALANCE WAM766-1 (US) versions prior to V3.0.0 SCALANCE WAM766-1 EEC versions prior to V3.0.0 SCALANCE WAM766-1 EEC (ME) versions prior to V3.0.0 SCALANCE WAM766-1 EEC (US) versions prior to V3.0.0 SCALANCE WUB762-1 versions prior to V3.0.0 SCALANCE WUB762-1 iFeatures versions prior to V3.0.0 SCALANCE WUM763-1 versions prior to V3.0.0 SCALANCE WUM763-1 (US) versions prior to V3.0.0 SCALANCE WUM766-1 versions prior to V3.0.0 SCALANCE WUM766-1 (ME) versions prior to V3.0.0 SCALANCE WUM766-1 (USA) versions prior to V3.0.0

Description: The integrated ICMP service of the network stack of affected devices can be forced to exhaust its available memory resources when receiving specially crafted messages targeting IP fragment re-assembly. This could allow an unauthenticated remote attacker to cause a temporary denial of service condition of the ICMP service. Other communication services are not affected. Affected devices will resume normal operation after the attack terminates.

Recommendations: Update SCALANCE WAB762-1 to version V3.0.0 or later. Update SCALANCE WAM763-1 to version V3.0.0 or later. Update SCALANCE WAM763-1 (ME) to version V3.0.0 or later. Update SCALANCE WAM763-1 (US) to version V3.0.0 or later. Update SCALANCE WAM766-1 to version V3.0.0 or later. Update SCALANCE WAM766-1 (ME) to version V3.0.0 or later. Update SCALANCE WAM766-1 (US) to version V3.0.0 or later. Update SCALANCE WAM766-1 EEC to version V3.0.0 or later. Update SCALANCE WAM766-1 EEC (ME) to version V3.0.0 or later. Update SCALANCE WAM766-1 EEC (US) to version V3.0.0 or later. Update SCALANCE WUB762-1 to version V3.0.0 or later. Update SCALANCE WUB762-1 iFeatures to version V3.0.0 or later. Update SCALANCE WUM763-1 to version V3.0.0 or later. Update SCALANCE WUM763-1 (US) to version V3.0.0 or later. Update SCALANCE WUM766-1 to version V3.0.0 or later. Update SCALANCE WUM766-1 (ME) to version V3.0.0 or later. Update SCALANCE WUM766-1 (USA) to version V3.0.0 or later.