{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-22T03:42:28.010","vulnerabilities":[{"cve":{"id":"CVE-2025-40570","sourceIdentifier":"productcert@siemens.com","published":"2025-08-12T12:15:35.387","lastModified":"2026-04-15T00:35:42.020","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"A vulnerability has been identified in SIPROTEC 5 6MD84 (CP300) (All versions < V10.0), SIPROTEC 5 6MD85 (CP300) (All versions >= V7.80 < V10.0), SIPROTEC 5 6MD86 (CP300) (All versions >= V7.80 < V10.0), SIPROTEC 5 6MD89 (CP300) (All versions >= V7.80 < V10.0), SIPROTEC 5 6MU85 (CP300) (All versions >= V7.80 < V10.0), SIPROTEC 5 7KE85 (CP300) (All versions >= V7.80 < V10.0), SIPROTEC 5 7SA82 (CP150) (All versions < V10.0), SIPROTEC 5 7SA86 (CP300) (All versions >= V7.80 < V10.0), SIPROTEC 5 7SA87 (CP300) (All versions >= V7.80 < V10.0), SIPROTEC 5 7SD82 (CP150) (All versions < V10.0), SIPROTEC 5 7SD86 (CP300) (All versions >= V7.80 < V10.0), SIPROTEC 5 7SD87 (CP300) (All versions >= V7.80 < V10.0), SIPROTEC 5 7SJ81 (CP150) (All versions < V10.0), SIPROTEC 5 7SJ82 (CP150) (All versions < V10.0), SIPROTEC 5 7SJ85 (CP300) (All versions >= V7.80 < V10.0), SIPROTEC 5 7SJ86 (CP300) (All versions >= V7.80 < V10.0), SIPROTEC 5 7SK82 (CP150) (All versions < V10.0), SIPROTEC 5 7SK85 (CP300) (All versions >= V7.80 < V10.0), SIPROTEC 5 7SL82 (CP150) (All versions < V10.0), SIPROTEC 5 7SL86 (CP300) (All versions >= V7.80 < V10.0), SIPROTEC 5 7SL87 (CP300) (All versions >= V7.80 < V10.0), SIPROTEC 5 7SS85 (CP300) (All versions >= V7.80 < V10.0), SIPROTEC 5 7ST85 (CP300) (All versions < V10.0), SIPROTEC 5 7ST86 (CP300) (All versions < V10.0), SIPROTEC 5 7SX82 (CP150) (All versions < V10.0), SIPROTEC 5 7SX85 (CP300) (All versions < V10.0), SIPROTEC 5 7SY82 (CP150) (All versions < V10.0), SIPROTEC 5 7UM85 (CP300) (All versions >= V7.80 < V10.0), SIPROTEC 5 7UT82 (CP150) (All versions < V10.0), SIPROTEC 5 7UT85 (CP300) (All versions >= V7.80 < V10.0), SIPROTEC 5 7UT86 (CP300) (All versions >= V7.80 < V10.0), SIPROTEC 5 7UT87 (CP300) (All versions >= V7.80 < V10.0), SIPROTEC 5 7VE85 (CP300) (All versions >= V7.80 < V10.0), SIPROTEC 5 7VK87 (CP300) (All versions >= V7.80 < V10.0), SIPROTEC 5 7VU85 (CP300) (All versions < V10.0), SIPROTEC 5 Compact 7SX800 (CP050) (All versions < V10.0). Affected devices do not properly limit the bandwidth for incoming network packets over their local USB port. This could allow an attacker with physical access to send specially crafted packets with high bandwidth to the affected devices thus forcing them to exhaust their memory and stop responding to any network traffic via the local USB port. Affected devices reset themselves automatically after a successful attack. The protection function is not affected of this vulnerability."},{"lang":"es","value":"Se ha identificado una vulnerabilidad en SIPROTEC 5 6MD84 (CP300) (Todas las versiones < V10.0), SIPROTEC 5 6MD85 (CP300) (Todas las versiones >= V7.80 < V10.0), SIPROTEC 5 6MD86 (CP300) (Todas las versiones >= V7.80 < V10.0), SIPROTEC 5 6MD89 (CP300) (Todas las versiones >= V7.80 < V10.0), SIPROTEC 5 6MU85 (CP300) (Todas las versiones >= V7.80 < V10.0), SIPROTEC 5 7KE85 (CP300) (Todas las versiones >= V7.80 < V10.0), SIPROTEC 5 7SA82 (CP150) (Todas las versiones < V10.0), SIPROTEC 5 7SA86 (CP300) (Todas las versiones >= V7.80 < V10.0), SIPROTEC 5 7SA87 (CP300) (Todas las versiones >= V7.80 < V10.0), SIPROTEC 5 7SD82 (CP150) (Todas las versiones < V10.0), SIPROTEC 5 7SD86 (CP300) (Todas las versiones >= V7.80 < V10.0), SIPROTEC 5 7SD87 (CP300) (Todas las versiones >= V7.80 < V10.0), SIPROTEC 5 7SJ81 (CP150) (Todas las versiones < V10.0), SIPROTEC 5 7SJ82 (CP150) (Todas las versiones < V10.0), SIPROTEC 5 7SJ85 (CP300) (Todas las versiones >= V7.80 < V10.0), SIPROTEC 5 7SJ86 (CP300) (Todas las versiones versiones >= V7.80 < V10.0), SIPROTEC 5 7SK82 (CP150) (Todas las versiones < V10.0), SIPROTEC 5 7SK85 (CP300) (Todas las versiones >= V7.80 < V10.0), SIPROTEC 5 7SL82 (CP150) (Todas las versiones < V10.0), SIPROTEC 5 7SL86 (CP300) (Todas las versiones >= V7.80 < V10.0), SIPROTEC 5 7SL87 (CP300) (Todas las versiones >= V7.80 < V10.0), SIPROTEC 5 7SS85 (CP300) (Todas las versiones >= V7.80 < V10.0), SIPROTEC 5 7ST85 (CP300) (Todas las versiones < V10.0), SIPROTEC 5 7ST86 (CP300) (Todas las versiones < V10.0), SIPROTEC 5 7SX82 (CP150) (Todas las versiones < V10.0), SIPROTEC 5 7SX85 (CP300) (Todas las versiones < V10.0), SIPROTEC 5 7SY82 (CP150) (Todas las versiones < V10.0), SIPROTEC 5 7UM85 (CP300) (Todas las versiones >= V7.80 < V10.0), SIPROTEC 5 7UT82 (CP150) (Todas las versiones < V10.0), SIPROTEC 5 7UT85 (CP300) (Todas las versiones >= V7.80 < V10.0), SIPROTEC 5 7UT86 (CP300) (Todas las versiones >= V7.80 < V10.0), SIPROTEC 5 7UT87 (CP300) (Todas las versiones >= V7.80 < V10.0), SIPROTEC 5 7VE85 (CP300) (Todas las versiones >= V7.80 < V10.0), SIPROTEC 5 7VK87 (CP300) (Todas las versiones >= V7.80 < V10.0), SIPROTEC 5 7VU85 (CP300) (Todas las versiones < V10.0), SIPROTEC 5 Compact 7SX800 (CP050) (Todas las versiones < V10.0). Los dispositivos afectados no limitan correctamente el ancho de banda para los paquetes de red entrantes a través de su puerto USB local. Esto podría permitir que un atacante con acceso físico envíe paquetes especialmente manipulados con un alto ancho de banda a los dispositivos afectados, obligándolos a agotar su memoria y a dejar de responder al tráfico de red a través del puerto USB local. Los dispositivos afectados se reinician automáticamente tras un ataque exitoso. La función de protección no se ve afectada por esta vulnerabilidad."}],"metrics":{"cvssMetricV40":[{"source":"productcert@siemens.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":2.4,"baseSeverity":"LOW","attackVector":"PHYSICAL","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"NONE","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"LOW","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"productcert@siemens.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L","baseScore":2.4,"baseSeverity":"LOW","attackVector":"PHYSICAL","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"LOW"},"exploitabilityScore":0.9,"impactScore":1.4}]},"weaknesses":[{"source":"productcert@siemens.com","type":"Secondary","description":[{"lang":"en","value":"CWE-770"}]}],"references":[{"url":"https://cert-portal.siemens.com/productcert/html/ssa-894058.html","source":"productcert@siemens.com"}]}}]}