Full Report
SENTRON Powercenter devices are not affected by a denial of service vulnerability that can be triggered during BLE (Bluetooth Low Energy) pairing. Note: Unlike stated in the initial version of this security advisory from 2024-12-10, detailed analysis has shown that SENTRON Powercenter devices are not affected by this vulnerability.
Analysis Summary
# Vulnerability: Denial of Service on Peripheral Device during BLE Pairing (Clarification for SENTRON)
## CVE Details
- CVE ID: CVE-2024-6657
- CVSS Score: 6.5 (Medium) [CVSS v3.1] / 7.1 (High) [CVSS v4.0]
- CWE: CWE-821: Incorrect Synchronization
## Affected Systems
- Products: SENTRON Powercenter 1000 (7KN1110-0MC00), SENTRON Powercenter 1100 (7KN1111-0MC00)
- **Versions: All versions**
- **Configurations: Not affected.** (Detailed analysis showed that the vulnerability component is not present in these devices.)
## Vulnerability Description
CVE-2024-6657 describes a Denial of Service (DoS) vulnerability that can occur in a Bluetooth Low Energy (BLE) network. When multiple central devices continuously connect and disconnect to a peripheral device, the peripheral device may crash, requiring a hard reset to recover functionality.
*Note: Despite the initial advisory, Siemens has since confirmed via update V1.1 that SENTRON Powercenter 1000 and 1100 devices are **not** affected by this specific vulnerability because the relevant component is not present.*
## Exploitation
- Status: PoC available (for the general CVE, but SENTRON is not affected)
- Complexity: Low (AC:L)
- Attack Vector: Adjacent (AV:A)
## Impact
(Based on CVE profile, though SENTRON is not impacted)
- Confidentiality: No Impact (None)
- Integrity: No Impact (None)
- Availability: High Impact (H) - Requires hard reset to recover the peripheral.
## Remediation
### Patches
- No patches are listed as none of the Siemens products covered by this specific finding (Powercenter 1000/1100) are affected.
### Workarounds
- **General Security Recommendations:** Protect network access to devices with appropriate mechanisms. Configure the environment according to Siemens' operational guidelines for Industrial Security and follow product manuals.
## Detection
- **Indicators of Compromise:** Affected peripherals requiring a hard reset following intensive connection/disconnection attempts via BLE.
- **Detection methods and tools:** Not specifically detailed for this CVE's scope clarification. Focus on monitoring BLE pairing activity adjacent to the device.
## References
- Siemens Advisory SSA-620799 (V1.1 Update date: 2025-06-10)
- Vendor Advisory Link (defanged): hxxps://cert-portal.siemens.com/productcert/html/ssa-620799.html
- Industrial Security Guidelines: hxxps://www.siemens.com/cert/operational-guidelines-industrial-security