Siemens SIMATIC

CRITICAL

CVSS 9.6

Date 2026-05-14T06:00:00+00:00

Source cisa-csaf

Published by CISA

// Description

SIMATIC S7-1500 devices contain a vulnerability that could allow an attacker to inject code by tricking a legitimate user into importing a specially crafted trace file in the web interface. Siemens has released new versions for several affected products and recommends to update to the latest versions. Siemens is preparing further fix versions and recommends specific countermeasures for products where fixes are not, or not yet available.

// Vulnerabilities (1)

CVE ID	CVSS Score	Severity	Description
CVE-2025-40943	9.6	critical	CVE-2025-40943. Affected devices do not properly sanitize contents of trace files. This could allow an attacker to inject code through social engineering an authorized user, who has the function right "Read diagnostics", to import a specially crafted trace file. The malicious trace file is insufficiently sanitized and malicious code could be executed in the clients browser session and trigger PLC operations via the webserver that the legitimate user is authorized to perform.

// Affected Products (99)

Vendor	Product	Asset Type	Purdue Level	Firmware
Siemens	Unknown	plc	L1	--
Siemens	Unknown	plc	L1	--
Siemens	Unknown	plc	L1	--
Siemens	Unknown	plc	L1	--
Siemens	Unknown	plc	L1	--
Siemens	Unknown	plc	L1	--
Siemens	Unknown	plc	L1	--
Siemens	Unknown	plc	L1	--
Siemens	Unknown	plc	L1	--
Siemens	Unknown	plc	L1	--
Siemens	Unknown	plc	L1	--
Siemens	Unknown	plc	L1	--
Siemens	Unknown	plc	L1	--
Siemens	Unknown	plc	L1	--
Siemens	Unknown	plc	L1	--
Siemens	Unknown	plc	L1	--
Siemens	Unknown	plc	L1	--
Siemens	Unknown	plc	L1	--
Siemens	Unknown	plc	L1	--
Siemens	Unknown	plc	L1	--
Siemens	Unknown	plc	L1	--
Siemens	Unknown	plc	L1	--
Siemens	Unknown	plc	L1	--
Siemens	Unknown	plc	L1	--
Siemens	Unknown	plc	L1	--
Siemens	Unknown	plc	L1	--
Siemens	Unknown	plc	L1	--
Siemens	Unknown	plc	L1	--
Siemens	Unknown	plc	L1	--
Siemens	Unknown	plc	L1	--
Siemens	Unknown	plc	L1	--
Siemens	Unknown	plc	L1	--
Siemens	Unknown	plc	L1	--
Siemens	Unknown	plc	L1	--
Siemens	Unknown	plc	L1	--
Siemens	Unknown	plc	L1	--
Siemens	Unknown	plc	L1	--
Siemens	Unknown	plc	L1	--
Siemens	Unknown	plc	L1	--
Siemens	Unknown	plc	L1	--
Siemens	Unknown	plc	L1	--
Siemens	Unknown	plc	L1	--
Siemens	Unknown	plc	L1	--
Siemens	Unknown	plc	L1	--
Siemens	Unknown	plc	L1	--
Siemens	Unknown	plc	L1	--
Siemens	Unknown	plc	L1	--
Siemens	Unknown	plc	L1	--
Siemens	Unknown	plc	L1	--
Siemens	Unknown	plc	L1	--
Siemens	Unknown	plc	L1	--
Siemens	Unknown	plc	L1	--
Siemens	Unknown	plc	L1	--
Siemens	Unknown	plc	L1	--
Siemens	Unknown	plc	L1	--
Siemens	Unknown	plc	L1	--
Siemens	Unknown	plc	L1	--
Siemens	Unknown	plc	L1	--
Siemens	Unknown	plc	L1	--
Siemens	Unknown	plc	L1	--
Siemens	Unknown	plc	L1	--
Siemens	Unknown	plc	L1	--
Siemens	Unknown	plc	L1	--
Siemens	Unknown	plc	L1	--
Siemens	Unknown	plc	L1	--
Siemens	Unknown	plc	L1	--
Siemens	Unknown	plc	L1	--
Siemens	Unknown	plc	L1	--
Siemens	Unknown	plc	L1	--
Siemens	Unknown	plc	L1	--
Siemens	Unknown	plc	L1	--
Siemens	Unknown	plc	L1	--
Siemens	Unknown	plc	L1	--
Siemens	Unknown	plc	L1	--
Siemens	Unknown	plc	L1	--
Siemens	Unknown	plc	L1	--
Siemens	Unknown	plc	L1	--
Siemens	Unknown	plc	L1	--
Siemens	Unknown	plc	L1	--
Siemens	Unknown	plc	L1	--
Siemens	Unknown	plc	L1	--
Siemens	Unknown	plc	L1	--
Siemens	Unknown	plc	L1	--
Siemens	Unknown	plc	L1	--
Siemens	Unknown	plc	L1	--
Siemens	Unknown	plc	L1	--
Siemens	Unknown	plc	L1	--
Siemens	Unknown	plc	L1	--
Siemens	Unknown	plc	L1	--
Siemens	Unknown	plc	L1	--
Siemens	Unknown	plc	L1	--
Siemens	Unknown	plc	L1	--
Siemens	Unknown	plc	L1	--
Siemens	Unknown	plc	L1	--
Siemens	Unknown	plc	L1	--
Siemens	Unknown	plc	L1	--
Siemens	Unknown	plc	L1	--
Siemens	Unknown	plc	L1	--
Siemens	Unknown	plc	L1	--

// Remediations (6)

Mitigation: Only upload trusted trace files

Only upload trusted trace files

Patch: Update to V3.1.6 or later version

Update to V3.1.6 or later version

Patch: Update to V4.1.2 or later version

Update to V4.1.2 or later version

Patch: Update to V3.1.6 or later version

Update to V3.1.6 or later version

Mitigation: Disable the webserver if not required on the affected systems. Restrict the access to Port 80/tcp an

Disable the webserver if not required on the affected systems. Restrict the access to Port 80/tcp and 443/tcp to trusted IP address only

Patch: Update to V2.9.9 or later version

Update to V2.9.9 or later version

Siemens SIMATIC

// Description

// Vulnerabilities (1)

// Affected Products (99)

// Remediations (6)

// References