Medium severity4.3NVD Advisory· Published May 13, 2025· Updated Jun 17, 2026
CVE-2025-40576
CVE-2025-40576
Description
A vulnerability has been identified in SCALANCE LPE9403 (6GK5998-3GS00-2AC2) (All versions < V4.0 HF0). Affected devices do not properly validate incoming Profinet packets. An unauthenticated remote attacker can exploit this flaw by sending a specially crafted malicious packet, which leads to a crash of the dcpd process.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2< V4.0 HF0+ 1 more
- (no CPE)range: < V4.0 HF0
- (no CPE)range: 0
Patches
Vulnerability mechanics
References
1- cert-portal.siemens.com/productcert/html/ssa-327438.htmlnvdVendor Advisory
News mentions
0No linked articles in our index yet.