VDB
SSA-687955
SSA-687955
PUBLISHED
CVSS 6.800000190734863 MEDIUM
Affected devices do not properly limit access to a development shell accessible over a physical interface. This could allow an unauthenticated attacker with physical access to the device to execute arbitrary commands on the device.
Risk Scores
CVSS v3.1
6.800000190734863
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Siemens | SIPROTEC 5 7ST85 (CP300) | |
| Siemens | SIPROTEC 5 7SX82 (CP150) | |
| Siemens | SIPROTEC 5 6MD86 (CP300) | |
| Siemens | SIPROTEC 5 7ST86 (CP300) | |
| Siemens | SIPROTEC 5 7SA86 (CP200) | |
| Siemens | SIPROTEC 5 7KE85 (CP200) | |
| Siemens | SIPROTEC 5 7SL82 (CP100) | |
| Siemens | SIPROTEC 5 7SJ85 (CP300) | |
| Siemens | SIPROTEC 5 7UT82 (CP100) | |
| Siemens | SIPROTEC 5 7SL86 (CP300) | |
| Siemens | SIPROTEC 5 7VU85 (CP300) | |
| Siemens | SIPROTEC 5 7UT85 (CP300) | |
| Siemens | SIPROTEC 5 7SK82 (CP100) | |
| Siemens | SIPROTEC 5 7SJ81 (CP100) | |
| Siemens | SIPROTEC 5 7SJ82 (CP150) | |
| Siemens | SIPROTEC 5 7UT87 (CP300) | |
| Siemens | SIPROTEC 5 7SD87 (CP200) | |
| Siemens | SIPROTEC 5 7SJ82 (CP100) | |
| Siemens | SIPROTEC 5 7SL82 (CP150) | |
| Siemens | SIPROTEC 5 Compact 7SX800 (CP050) |
…and 41 more
Timeline
- Feb 11, 2025 CVE Published
- Nov 11, 2025 CVE Updated
References
- https://cert-portal.siemens.com/productcert/csaf/ssa-687955.json advisory
- https://cert-portal.siemens.com/productcert/html/ssa-687955.html advisory
- https://support.industry.siemens.com/cs/ww/en/view/109757430/ patch
- https://support.industry.siemens.com/cs/ww/en/view/109814150/ patch
- https://support.industry.siemens.com/cs/ww/en/view/109757433/ patch
- https://support.industry.siemens.com/cs/ww/en/view/109796884/ patch