{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-12T10:39:30.484","vulnerabilities":[{"cve":{"id":"CVE-2025-31930","sourceIdentifier":"productcert@siemens.com","published":"2025-05-13T10:15:24.710","lastModified":"2026-04-15T00:35:42.020","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"A vulnerability has been identified in IEC 1Ph 7.4kW Child socket (8EM1310-2EH04-0GA0) (All versions < V2.135), IEC 1Ph 7.4kW Child socket/ shutter (8EM1310-2EN04-0GA0) (All versions < V2.135), IEC 1Ph 7.4kW Parent cable 7m (8EM1310-2EJ04-3GA1) (All versions < V2.135), IEC 1Ph 7.4kW Parent cable 7m incl. SIM (8EM1310-2EJ04-3GA2) (All versions < V2.135), IEC 1Ph 7.4kW Parent socket (8EM1310-2EH04-3GA1) (All versions < V2.135), IEC 1Ph 7.4kW Parent socket incl. SIM (8EM1310-2EH04-3GA2) (All versions < V2.135), IEC 1Ph 7.4kW Parent socket/ shutter (8EM1310-2EN04-3GA1) (All versions < V2.135), IEC 1Ph 7.4kW Parent socket/ shutter SIM (8EM1310-2EN04-3GA2) (All versions < V2.135), IEC 3Ph 22kW Child cable 7m (8EM1310-3EJ04-0GA0) (All versions < V2.135), IEC 3Ph 22kW Child socket (8EM1310-3EH04-0GA0) (All versions < V2.135), IEC 3Ph 22kW Child socket/ shutter (8EM1310-3EN04-0GA0) (All versions < V2.135), IEC 3Ph 22kW Parent cable 7m (8EM1310-3EJ04-3GA1) (All versions < V2.135), IEC 3Ph 22kW Parent cable 7m incl. SIM (8EM1310-3EJ04-3GA2) (All versions < V2.135), IEC 3Ph 22kW Parent socket (8EM1310-3EH04-3GA1) (All versions < V2.135), IEC 3Ph 22kW Parent socket incl. SIM (8EM1310-3EH04-3GA2) (All versions < V2.135), IEC 3Ph 22kW Parent socket/ shutter (8EM1310-3EN04-3GA1) (All versions < V2.135), IEC 3Ph 22kW Parent socket/ shutter SIM (8EM1310-3EN04-3GA2) (All versions < V2.135), IEC ERK 3Ph 22 kW Child cable 7m (8EM1310-3FJ04-0GA0) (All versions < V2.135), IEC ERK 3Ph 22 kW Child cable 7m (8EM1310-3FJ04-0GA1) (All versions < V2.135), IEC ERK 3Ph 22 kW Child cable 7m (8EM1310-3FJ04-0GA2) (All versions < V2.135), IEC ERK 3Ph 22 kW Child socket (8EM1310-3FH04-0GA0) (All versions < V2.135), IEC ERK 3Ph 22 kW Parent socket (8EM1310-3FH04-3GA1) (All versions < V2.135), IEC ERK 3Ph 22 kW Parent socket incl. SI (8EM1310-3FH04-3GA2) (All versions < V2.135), UL Commercial Cellular 48A NTEP (8EM1310-5HF14-1GA2) (All versions < V2.135), UL Commercial Child 40A w/ 15118 HW (8EM1310-4CF14-0GA0) (All versions < V2.135), UL Commercial Child 48A BA Compliant (8EM1315-5CG14-0GA0) (All versions < V2.135), UL Commercial Child 48A w/ 15118 HW (8EM1310-5CF14-0GA0) (All versions < V2.135), UL Commercial Parent 40A with Simcard (8EM1310-4CF14-1GA2) (All versions < V2.135), UL Commercial Parent 48A (USPS) (8EM1317-5CG14-1GA2) (All versions < V2.135), UL Commercial Parent 48A BA Compliant (8EM1315-5CG14-1GA2) (All versions < V2.135), UL Commercial Parent 48A with Simcard BA (8EM1310-5CF14-1GA2) (All versions < V2.135), UL Commercial Parent 48A, 15118, 25ft (8EM1310-5CG14-1GA1) (All versions < V2.135), UL Commercial Parent 48A, 15118, 25ft (8EM1314-5CG14-2FA2) (All versions < V2.135), UL Commercial Parent 48A, 15118, 25ft (8EM1315-5HG14-1GA2) (All versions < V2.135), UL Commercial Parent 48A,15118 25ft Sim (8EM1310-5CG14-1GA2) (All versions < V2.135), VersiCharge Blue™ 80A AC Cellular (8EM1315-7BG16-1FH2) (All versions < V2.135). Affected devices contain Modbus service enabled by default. This could allow an attacker connected to the same network to remotely control the EV charger."},{"lang":"es","value":"Se ha identificado una vulnerabilidad en el zócalo secundario IEC 1Ph 7.4kW (8EM1310-2EH04-0GA0) (Todas las versiones < V2.135), zócalo/obturador secundario IEC 1Ph 7.4kW (8EM1310-2EN04-0GA0) (Todas las versiones < V2.135), cable principal IEC 1Ph 7.4kW de 7 m (8EM1310-2EJ04-3GA1) (Todas las versiones < V2.135), cable principal IEC 1Ph 7.4kW de 7 m incl. SIM (8EM1310-2EJ04-3GA2) (Todas las versiones < V2.135), zócalo principal IEC 1Ph 7.4kW (8EM1310-2EH04-3GA1) (Todas las versiones < V2.135), zócalo principal IEC 1Ph 7.4kW incl. SIM (8EM1310-2EH04-3GA2) (Todas las versiones < V2.135), Toma principal/obturador IEC monofásico de 7,4 kW (8EM1310-2EN04-3GA1) (Todas las versiones < V2.135), Toma principal/obturador IEC monofásico de 7,4 kW SIM (8EM1310-2EN04-3GA2) (Todas las versiones < V2.135), Cable secundario IEC trifásico de 22 kW de 7 m (8EM1310-3EJ04-0GA0) (Todas las versiones < V2.135), Toma secundaria IEC trifásica de 22 kW (8EM1310-3EH04-0GA0) (Todas las versiones < V2.135), Toma secundaria IEC trifásica de 22 kW (8EM1310-3EN04-0GA0) (Todas las versiones < V2.135), Toma secundaria IEC trifásica de 22 kW (8EM1310-3EN04-0GA0) (Todas las versiones < V2.135), cable principal IEC 3Ph 22kW de 7 m (8EM1310-3EJ04-3GA1) (todas las versiones < V2.135), cable principal IEC 3Ph 22kW de 7 m incl. SIM (8EM1310-3EJ04-3GA2) (todas las versiones < V2.135), toma principal IEC 3Ph 22kW (8EM1310-3EH04-3GA1) (todas las versiones < V2.135), toma principal IEC 3Ph 22kW incl. SIM (8EM1310-3EH04-3GA2) (Todas las versiones < V2.135), Toma principal/obturador IEC 3Ph 22kW (8EM1310-3EN04-3GA1) (Todas las versiones < V2.135), Toma principal/obturador IEC 3Ph 22kW SIM (8EM1310-3EN04-3GA2) (Todas las versiones < V2.135), Cable secundario IEC ERK 3Ph 22 kW 7 m (8EM1310-3FJ04-0GA0) (Todas las versiones < V2.135), Cable secundario IEC ERK 3Ph 22 kW 7 m (8EM1310-3FJ04-0GA1) (Todas las versiones < V2.135), Cable secundario IEC ERK 3Ph 22 kW 7 m (8EM1310-3FJ04-0GA2) (Todas las versiones < V2.135), V2.135), toma de corriente secundaria IEC ERK 3Ph de 22 kW (8EM1310-3FH04-0GA0) (todas las versiones < V2.135), toma de corriente principal IEC ERK 3Ph de 22 kW (8EM1310-3FH04-3GA1) (todas las versiones < V2.135), toma de corriente principal IEC ERK 3Ph de 22 kW incl. SI (8EM1310-3FH04-3GA2) (Todas las versiones < V2.135), UL Commercial Cellular 48A NTEP (8EM1310-5HF14-1GA2) (Todas las versiones < V2.135), UL Commercial Child 40A con hardware 15118 (8EM1310-4CF14-0GA0) (Todas las versiones < V2.135), UL Commercial Child 48A BA Compliant (8EM1315-5CG14-0GA0) (Todas las versiones < V2.135), UL Commercial Child 48A con hardware 15118 (8EM1310-5CF14-0GA0) (Todas las versiones < V2.135), UL Commercial Parent 40A con tarjeta SIM (8EM1310-4CF14-1GA2) (Todas las versiones < V2.135), UL Commercial Parent 48A (USPS) (8EM1317-5CG14-1GA2) (Todas las versiones < V2.135), UL Commercial Parent 48A BA Compliant (8EM1315-5CG14-1GA2) (Todas las versiones < V2.135), UL Commercial Parent 48A con Simcard BA (8EM1310-5CF14-1GA2) (Todas las versiones < V2.135), UL Commercial Parent 48A, 15118, 25 pies (8EM1310-5CG14-1GA1) (Todas las versiones < V2.135), UL Commercial Parent 48A, 15118, 25 pies (8EM1314-5CG14-2FA2) (Todas las versiones < V2.135), UL Commercial Parent 48A, 15118, 25 pies (8EM1315-5HG14-1GA2) (Todas las versiones anteriores a la V2.135), UL Commercial Parent 48A,15118 25ft Sim (8EM1310-5CG14-1GA2) (Todas las versiones anteriores a la V2.135), VersiCharge Blue™ 80A AC Cellular (8EM1315-7BG16-1FH2) (Todas las versiones anteriores a la V2.135). Los dispositivos afectados tienen el servicio Modbus habilitado por defecto. Esto podría permitir que un atacante conectado a la misma red controle remotamente el cargador de vehículos eléctricos."}],"metrics":{"cvssMetricV40":[{"source":"productcert@siemens.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:L/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":8.7,"baseSeverity":"HIGH","attackVector":"ADJACENT","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"HIGH","subConfidentialityImpact":"LOW","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"productcert@siemens.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"ADJACENT_NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}]},"weaknesses":[{"source":"productcert@siemens.com","type":"Secondary","description":[{"lang":"en","value":"CWE-1188"}]}],"references":[{"url":"https://cert-portal.siemens.com/productcert/html/ssa-556937.html","source":"productcert@siemens.com"}]}}]}