VDB
CVE-2025-40572
CVE-2025-40572
PUBLISHED
CVSS 9.300000190734863 CRITICAL
De multiples vulnérabilités ont été découvertes dans les produits Siemens. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire, un déni de service à distance et une atteinte à la confidentialité des données.
EPSS 0.06% · 18.2th percentile
Risk Scores
CVSS 4.0
9.300000190734863
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N
EPSS Score
0.06%
18.2th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Siemens | N/A |
Exploit Intelligence
- CIRCL seen: CVE-2024-23815 (circl-sighting)
- https://cert-portal.siemens.com/productcert/html/ssa-523418.html (circl)
- data.yaml (github-poc)
- data.yaml (github-poc)
- data.yaml (github-poc)
- data.yaml (github-poc)
- data.yaml (github-poc)
- data.yaml (github-poc)
Timeline
- May 13, 2025 CVE Published
- May 13, 2025 EPSS Score
- May 13, 2025 Coalition ESS Score
- May 15, 2025 PoC Published
- May 24, 2025 EPSS Score
- Jun 4, 2025 Coalition ESS Score
- Jun 5, 2025 EPSS Score
- Jun 16, 2025 EPSS Score
- Jun 28, 2025 EPSS Score
- Jul 8, 2025 Coalition ESS Score
- Jul 8, 2025 CVE Updated
- Jul 9, 2025 EPSS Score
References
- https://cert.ssi.gouv.fr/avis/CERTFR-2025-AVI-0397/ advisory
- https://cert-portal.siemens.com/productcert/html/ssa-523418.html advisory
- https://cert-portal.siemens.com/productcert/html/ssa-446307.html advisory
- https://cert-portal.siemens.com/productcert/html/ssa-339086.html advisory
- https://cert-portal.siemens.com/productcert/html/ssa-614723.html advisory
- https://cert-portal.siemens.com/productcert/html/ssa-794185.html advisory
- https://cert-portal.siemens.com/productcert/html/ssa-327438.html advisory