CVE-2025-40771
CVE-2025-40771
A vulnerability has been identified in SIMATIC CP 1542SP-1 (6GK7542-6UX00-0XE0) (All versions < V2.4.24), SIMATIC CP 1542SP-1 IRC (6GK7542-6VX00-0XE0) (All versions < V2.4.24), SIMATIC CP 1543SP-1 (6GK7543-6WX00-0XE0) (All versions < V2.4.24), SIPLUS ET 200SP CP 1542SP-1 IRC TX RAIL (6AG2542-6VX00-4XE0) (All versions < V2.4.24), SIPLUS ET 200SP CP 1543SP-1 ISEC (6AG1543-6WX00-7XE0) (All versions < V2.4.24), SIPLUS ET 200SP CP 1543SP-1 ISEC TX RAIL (6AG2543-6WX00-4XE0) (All versions < V2.4.24). Affected devices do not properly authenticate configuration connections. This could allow an unauthenticated remote attacker to access the configuration data.
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
Produtos afetados
Siemens · SIMATIC CP 1542SP-1Siemens · SIMATIC CP 1542SP-1 IRCSiemens · SIMATIC CP 1543SP-1Siemens · SIPLUS ET 200SP CP 1542SP-1 IRC TX RAILSiemens · SIPLUS ET 200SP CP 1543SP-1 ISECSiemens · SIPLUS ET 200SP CP 1543SP-1 ISEC TX RAILQuer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →