CVE-2024-11166 Information

Description

For TCAS II systems using transponders compliant with MOPS earlier than RTCA DO-181F an attacker can impersonate a ground station and issue a Comm-A Identity Request. This action can set the Sensitivity Level Control (SLC) to the lowest setting and disable the Resolution Advisory (RA) leading to a denial-of-service condition.

Reference

https://www.cisa.gov/news-events/ics-advisories/icsa-25-021-01