Unrated severityNVD Advisory· Published Jun 13, 2023· Updated Aug 2, 2024

CVE-2023-25910

Description

A vulnerability has been identified in SIMATIC PCS 7 (All versions < V9.1 SP2 UC04), SIMATIC S7-PM (All versions < V5.7 SP1 HF1), SIMATIC S7-PM (All versions < V5.7 SP2 HF1), SIMATIC STEP 7 V5 (All versions < V5.7). The affected product contains a database management system that could allow remote users with low privileges to use embedded functions of the database (local or in a network share) that have impact on the server.

An attacker with network access to the server network could leverage these embedded functions to run code with elevated privileges in the database management system's server.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

A vulnerability in Siemens SIMATIC products allows low-privileged remote attackers to execute arbitrary code via embedded database functions.

Vulnerability

The Siemens SIMATIC PCS 7 (all versions < V9.1 SP2 UC04), SIMATIC S7-PM (all versions < V5.7 SP1 HF1 and < V5.7 SP2 HF1), and SIMATIC STEP 7 V5 (all versions < V5.7) contain a database management system that permits remote users with low privileges to use embedded functions of the database, either locally or from a network share, affecting the server. This design flaw allows an attacker to interact with the database in unintended ways.

Exploitation

An attacker needs network access to the server network and low-privileged credentials to exploit this vulnerability. By leveraging the embedded functions of the database, the attacker can execute operations that escalate to running code with elevated privileges within the database management system's server. No user interaction is required beyond network connectivity.

Impact

Successful exploitation allows the attacker to execute arbitrary code with elevated privileges in the database management system's server. This can lead to full compromise of the affected system, including data confidentiality, integrity, and availability (CIA).

Mitigation

Siemens has released fixes: for SIMATIC PCS 7, version V9.1 SP2 UC04 or later; for SIMATIC S7-PM, versions V5.7 SP1 HF1 or V5.7 SP2 HF1; and for SIMATIC STEP 7 V5, version V5.7. Users should apply the latest updates as per the advisory [1]. No workarounds are documented, but network segmentation and restricting access can reduce risk.

References

SSA-968170

AI Insight generated on May 27, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.

Affected products

Siemens Foundation/SIMATIC S7-PMllm-create
Range: < V5.7 SP1 HF1 / < V5.7 SP2 HF1
Siemens Foundation/SIMATIC STEP7llm-fuzzy2 versions
< V5.7+ 1 more
- (no CPE)range: < V5.7
- (no CPE)range: 0
Siemens Foundation/Simatic Pcs7llm-fuzzy3 versions
< V9.1 SP2 UC04+ 2 more
- (no CPE)range: < V9.1 SP2 UC04
- (no CPE)range: 0
- (no CPE)range: 0

Patches

No patches discovered yet.

Vulnerability mechanics

No source-code context for this CVE — mechanics is only generated when we can read the actual fix diff. Without that, the four sections (root cause, attack vector, affected code, fix) would be speculation rather than analysis.

References

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000