VYPR
← All advisories
Unrated severityNVD Advisory· Published Mar 10, 2026· Updated Mar 19, 2026

CVE-2025-40943

CVE-2025-40943

Description

Affected devices do not properly sanitize contents of trace files.

This could allow an attacker to inject code through social engineering an authorized user, who has the function right "Read diagnostics", to import a specially crafted trace file.

The malicious trace file is insufficiently sanitized and malicious code could be executed in the clients browser session and trigger PLC operations via the webserver that the legitimate user is authorized to perform.

Affected products

105
  • Siemens/SIMATIC Drive Controller CPU 1504D TFv5
    Range: 0
  • Siemens/SIMATIC Drive Controller CPU 1507D TFv5
    Range: 0
  • Siemens/SIMATIC ET 200SP CPU 1510SP-1 PNv5
    Range: 0
  • Siemens/SIMATIC ET 200SP CPU 1510SP F-1 PNv5
    Range: 0
  • Siemens/SIMATIC ET 200SP CPU 1512SP-1 PNv5
    Range: 0
  • Siemens/SIMATIC ET 200SP CPU 1512SP F-1 PNv5
    Range: 0
  • Siemens/SIMATIC ET 200SP CPU 1514SP-2 PNv5
    Range: 0
  • Siemens/SIMATIC ET 200SP CPU 1514SP F-2 PNv5
    Range: 0
  • Siemens/SIMATIC ET 200SP CPU 1514SPT-2 PNv5
    Range: 0
  • Siemens/SIMATIC ET 200SP CPU 1514SPT F-2 PNv5
    Range: 0
  • Siemens/SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V2 CPUs - Windows OSv5
    Range: 0
  • Siemens/SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V3 CPUs - Industrial OSv5
    Range: 0
  • Siemens/SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V3 CPUs - Windows OSv5
    Range: 0
  • Siemens/SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V2 CPUs - Windows OSv5
    Range: 0
  • Siemens/SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V3 CPUs - Industrial OSv5
    Range: 0
  • Siemens/SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V3 CPUs - Windows OSv5
    Range: 0
  • Siemens/SIMATIC ET 200SP Open Controller CPU 1515SP PC (incl. SIPLUS variants)v5
    Range: 0
  • Siemens/SIMATIC S7-1500 CPU 1511-1 PNv5
    Range: 0
  • Siemens/SIMATIC S7-1500 CPU 1511C-1 PNv5
    Range: 0
  • Siemens/SIMATIC S7-1500 CPU 1511F-1 PNv5
    Range: 0
  • Siemens/SIMATIC S7-1500 CPU 1511T-1 PNv5
    Range: 0
  • Siemens/SIMATIC S7-1500 CPU 1511TF-1 PNv5
    Range: 0
  • Siemens/SIMATIC S7-1500 CPU 1512C-1 PNv5
    Range: 0
  • Siemens/SIMATIC S7-1500 CPU 1513-1 PNv5
    Range: 0
  • Siemens/SIMATIC S7-1500 CPU 1513F-1 PNv5
    Range: 0
  • Siemens/SIMATIC S7-1500 CPU 1513pro-2 PNv5
    Range: 0
  • Siemens/SIMATIC S7-1500 CPU 1513pro F-2 PNv5
    Range: 0
  • Siemens/SIMATIC S7-1500 CPU 1515-2 PNv5
    Range: 0
  • Siemens/SIMATIC S7-1500 CPU 1515F-2 PNv5
    Range: 0
  • Siemens/SIMATIC S7-1500 CPU 1515T-2 PNv5
    Range: 0
  • Siemens/SIMATIC S7-1500 CPU 1515TF-2 PNv5
    Range: 0
  • Siemens/SIMATIC S7-1500 CPU 1516-3 PN/DPv5
    Range: 0
  • Siemens/SIMATIC S7-1500 CPU 1516F-3 PN/DPv5
    Range: 0
  • Siemens/SIMATIC S7-1500 CPU 1516pro-2 PNv5
    Range: 0
  • Siemens/SIMATIC S7-1500 CPU 1516pro F-2 PNv5
    Range: 0
  • Siemens/SIMATIC S7-1500 CPU 1516T-3 PNv5
    Range: 0
  • Siemens/SIMATIC S7-1500 CPU 1516T-3 PN/DPv5
    Range: 0
  • Siemens/SIMATIC S7-1500 CPU 1516TF-3 PNv5
    Range: 0
  • Siemens/SIMATIC S7-1500 CPU 1516TF-3 PN/DPv5
    Range: 0
  • Siemens/SIMATIC S7-1500 CPU 1517-3 PNv5
    Range: 0
  • Siemens/SIMATIC S7-1500 CPU 1517-3 PN/DPv5
    Range: 0
  • Siemens/SIMATIC S7-1500 CPU 1517F-3 PNv5
    Range: 0
  • Siemens/SIMATIC S7-1500 CPU 1517F-3 PN/DPv5
    Range: 0
  • Siemens/SIMATIC S7-1500 CPU 1517T-3 PNv5
    Range: 0
  • Siemens/SIMATIC S7-1500 CPU 1517T-3 PN/DPv5
    Range: 0
  • Siemens/SIMATIC S7-1500 CPU 1517TF-3 PNv5
    Range: 0
  • Siemens/SIMATIC S7-1500 CPU 1517TF-3 PN/DPv5
    Range: 0
  • Siemens/SIMATIC S7-1500 CPU 1518-3 PNv5
    Range: 0
  • Siemens/SIMATIC S7-1500 CPU 1518-4 PN/DPv5
    Range: 0
  • Siemens/SIMATIC S7-1500 CPU 1518-4 PN/DP MFPv5
    Range: 0
  • Siemens/SIMATIC S7-1500 CPU 1518F-3 PNv5
    Range: 0
  • Siemens/SIMATIC S7-1500 CPU 1518F-4 PN/DPv5
    Range: 0
  • Siemens/SIMATIC S7-1500 CPU 1518F-4 PN/DP MFPv5
    Range: 0
  • Siemens/SIMATIC S7-1500 CPU 1518T-3 PNv5
    Range: 0
  • Siemens/SIMATIC S7-1500 CPU 1518T-4 PN/DPv5
    Range: 0
  • Siemens/SIMATIC S7-1500 CPU 1518TF-3 PNv5
    Range: 0
  • Siemens/SIMATIC S7-1500 CPU 1518TF-4 PN/DPv5
    Range: 0
  • Siemens/SIMATIC S7-1500 CPU S7-1518-4 PN/DP ODKv5
    Range: 0
  • Siemens/SIMATIC S7-1500 CPU S7-1518F-4 PN/DP ODKv5
    Range: 0
  • Siemens/SIMATIC S7-1500 ET 200pro: CPU 1513PRO-2 PNv5
    Range: 0
  • Siemens/SIMATIC S7-1500 ET 200pro: CPU 1513PRO F-2 PNv5
    Range: 0
  • Siemens/SIMATIC S7-1500 ET 200pro: CPU 1516PRO-2 PNv5
    Range: 0
  • Siemens/SIMATIC S7-1500 ET 200pro: CPU 1516PRO F-2 PNv5
    Range: 0
  • Siemens/SIMATIC S7-1500 Software Controller CPU 1507S F V2v5
    Range: 0
  • Siemens/SIMATIC S7-1500 Software Controller CPU 1507S F V3v5
    Range: 0
  • Siemens/SIMATIC S7-1500 Software Controller CPU 1507S F V4v5
    Range: 0
  • Siemens/SIMATIC S7-1500 Software Controller CPU 1507S V2v5
    Range: 0
  • Siemens/SIMATIC S7-1500 Software Controller CPU 1507S V3v5
    Range: 0
  • Siemens/SIMATIC S7-1500 Software Controller CPU 1507S V4v5
    Range: 0
  • Siemens/SIMATIC S7-1500 Software Controller CPU 1508S F V2v5
    Range: 0
  • Siemens/SIMATIC S7-1500 Software Controller CPU 1508S F V3v5
    Range: 0
  • Siemens/SIMATIC S7-1500 Software Controller CPU 1508S F V4v5
    Range: 0
  • Siemens/SIMATIC S7-1500 Software Controller CPU 1508S TF V3v5
    Range: 0
  • Siemens/SIMATIC S7-1500 Software Controller CPU 1508S T V3v5
    Range: 0
  • Siemens/SIMATIC S7-1500 Software Controller CPU 1508S V2v5
    Range: 0
  • Siemens/SIMATIC S7-1500 Software Controller CPU 1508S V3v5
    Range: 0
  • Siemens/SIMATIC S7-1500 Software Controller CPU 1508S V4v5
    Range: 0
  • Siemens/SIMATIC S7-1500 Software Controller Linux V2v5
    Range: 0
  • Siemens/SIMATIC S7-1500 Software Controller Linux V3v5
    Range: 0
  • Siemens/SIMATIC S7-PLCSIM Advancedv5
    Range: 0
  • Siemens/SIPLUS ET 200SP CPU 1510SP-1 PNv5
    Range: 0
  • Siemens/SIPLUS ET 200SP CPU 1510SP-1 PN RAILv5
    Range: 0
  • Siemens/SIPLUS ET 200SP CPU 1510SP F-1 PNv5
    Range: 0
  • Siemens/SIPLUS ET 200SP CPU 1510SP F-1 PN RAILv5
    Range: 0
  • Siemens/SIPLUS ET 200SP CPU 1512SP-1 PNv5
    Range: 0
  • Siemens/SIPLUS ET 200SP CPU 1512SP-1 PN RAILv5
    Range: 0
  • Siemens/SIPLUS ET 200SP CPU 1512SP F-1 PNv5
    Range: 0
  • Siemens/SIPLUS ET 200SP CPU 1512SP F-1 PN RAILv5
    Range: 0
  • Siemens/SIPLUS S7-1500 CPU 1511-1 PNv5
    Range: 0
  • Siemens/SIPLUS S7-1500 CPU 1511-1 PN T1 RAILv5
    Range: 0
  • Siemens/SIPLUS S7-1500 CPU 1511-1 PN TX RAILv5
    Range: 0
  • Siemens/SIPLUS S7-1500 CPU 1511F-1 PNv5
    Range: 0
  • Siemens/SIPLUS S7-1500 CPU 1513-1 PNv5
    Range: 0
  • Siemens/SIPLUS S7-1500 CPU 1513F-1 PNv5
    Range: 0
  • Siemens/SIPLUS S7-1500 CPU 1515F-2 PNv5
    Range: 0
  • Siemens/SIPLUS S7-1500 CPU 1515F-2 PN RAILv5
    Range: 0
  • Siemens/SIPLUS S7-1500 CPU 1515F-2 PN T2 RAILv5
    Range: 0
  • Siemens/SIPLUS S7-1500 CPU 1516-3 PN/DPv5
    Range: 0
  • Siemens/SIPLUS S7-1500 CPU 1516-3 PN/DP RAILv5
    Range: 0
  • Siemens/SIPLUS S7-1500 CPU 1516-3 PN/DP TX RAILv5
    Range: 0
  • Siemens/SIPLUS S7-1500 CPU 1516F-3 PN/DPv5
    Range: 0
  • Siemens/SIPLUS S7-1500 CPU 1516F-3 PN/DP RAILv5
    Range: 0
  • Siemens/SIPLUS S7-1500 CPU 1518-4 PN/DPv5
    Range: 0
  • Siemens/SIPLUS S7-1500 CPU 1518-4 PN/DP MFPv5
    Range: 0
  • Siemens/SIPLUS S7-1500 CPU 1518F-4 PN/DPv5
    Range: 0

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

1

News mentions

0

No linked articles in our index yet.