Vulnetix
Try Vulnetix Request Demo
CVE-2025-40943 PUBLISHED CVSS 9.600000381469727 CRITICAL

A vulnerability has been identified in SICAM SIAPP SDK (All versions < V2.1.7). An out-of-bounds write vulnerability exists in SICAM SIAPP SDK. This could allow an attacker to write data beyond the intended buffer, potentially leading to denial of service, or arbitrary code execution.

EPSS 0.04% · 13.7th percentile

Risk Scores

CVSS v3.1
9.600000381469727
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
EPSS Score
0.04%
13.7th percentile

Affected Products

VendorProductVersions
SiemensSIMATIC S7-1500 CPU 1516-3 PN/DP0, 0, 0
SiemensSIMATIC S7-1500 CPU 1511C-1 PN0, 0, 0
SiemensSIMATIC S7-1500 Software Controller Linux V30, 0, 0
SiemensSIPLUS ET 200SP CPU 1512SP-1 PN RAIL0, 0, 0
SiemensSIPLUS S7-1500 CPU 1518-4 PN/DP MFP0, 0, 0
SiemensSIMATIC S7-1500 CPU 1511TF-1 PN0, 0, 0
SiemensSIMATIC S7-1500 CPU 1516T-3 PN/DP0, 0, 0
SiemensSIMATIC S7-1500 Software Controller CPU 1508S V20, 0, 0
SiemensSIMATIC S7-1500 CPU 1513-1 PN0, 0, 0
SiemensSIMATIC S7-1500 CPU 1515TF-2 PN0, 0, 0
SiemensSIMATIC S7-1500 CPU 1517F-3 PN/DP0, 0, 0
SiemensSIMATIC S7-1500 CPU 1517TF-3 PN/DP0, 0, 0
SiemensSIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V3 CPUs - Industrial OS0, 0, 0
SiemensSIPLUS ET 200SP CPU 1512SP-1 PN0, 0, 0
SiemensSIMATIC S7-1500 Software Controller CPU 1507S V20, 0, 0
SiemensSIMATIC S7-1500 Software Controller CPU 1508S F V40, 0, 0
SiemensSIMATIC ET 200SP CPU 1510SP-1 PN0, 0, 0
SiemensSIMATIC S7-1500 CPU 1513F-1 PN0, 0, 0
SiemensSIMATIC S7-1500 CPU 1517T-3 PN/DP0, 0, 0
SiemensSIMATIC S7-1500 CPU S7-1518-4 PN/DP ODK0, 0, 0

…and 86 more

Timeline

References

Open in Interactive Console →