{"dataType":"CVE_RECORD","dataVersion":"5.1","cveMetadata":{"cveId":"CVE-2025-40743","assignerOrgId":"cec7a2ec-15b4-4faf-bd53-b40f371f3a77","state":"PUBLISHED","assignerShortName":"siemens","dateReserved":"2025-04-16T08:39:30.030Z","datePublished":"2025-08-12T11:17:03.997Z","dateUpdated":"2025-08-13T20:18:49.085Z"},"containers":{"cna":{"providerMetadata":{"orgId":"cec7a2ec-15b4-4faf-bd53-b40f371f3a77","shortName":"siemens","dateUpdated":"2025-08-12T11:17:03.997Z"},"descriptions":[{"lang":"en","value":"A vulnerability has been identified in SINUMERIK 828D PPU.4 (All versions < V4.95 SP5), SINUMERIK 828D PPU.5 (All versions < V5.25 SP1), SINUMERIK 840D sl (All versions < V4.95 SP5), SINUMERIK MC (All versions < V1.25 SP1), SINUMERIK MC V1.15 (All versions < V1.15 SP5), SINUMERIK ONE (All versions < V6.25 SP1), SINUMERIK ONE V6.15 (All versions < V6.15 SP5). The affected application improperly validates authentication for its VNC access service, allowing access with insufficient password verification.\r\nThis could allow an attacker to gain unauthorized remote access and potentially compromise system confidentiality, integrity, or availability."}],"affected":[{"vendor":"Siemens","product":"SINUMERIK 828D PPU.4","versions":[{"status":"affected","version":"0","lessThan":"V4.95 SP5","versionType":"custom"}],"defaultStatus":"unknown"},{"vendor":"Siemens","product":"SINUMERIK 828D PPU.5","versions":[{"status":"affected","version":"0","lessThan":"V5.25 SP1","versionType":"custom"}],"defaultStatus":"unknown"},{"vendor":"Siemens","product":"SINUMERIK 840D sl","versions":[{"status":"affected","version":"0","lessThan":"V4.95 SP5","versionType":"custom"}],"defaultStatus":"unknown"},{"vendor":"Siemens","product":"SINUMERIK MC","versions":[{"status":"affected","version":"0","lessThan":"V1.25 SP1","versionType":"custom"}],"defaultStatus":"unknown"},{"vendor":"Siemens","product":"SINUMERIK MC V1.15","versions":[{"status":"affected","version":"0","lessThan":"V1.15 SP5","versionType":"custom"}],"defaultStatus":"unknown"},{"vendor":"Siemens","product":"SINUMERIK ONE","versions":[{"status":"affected","version":"0","lessThan":"V6.25 SP1","versionType":"custom"}],"defaultStatus":"unknown"},{"vendor":"Siemens","product":"SINUMERIK ONE V6.15","versions":[{"status":"affected","version":"0","lessThan":"V6.15 SP5","versionType":"custom"}],"defaultStatus":"unknown"}],"metrics":[{"cvssV3_1":{"version":"3.1","vectorString":"CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L","baseScore":8.3,"baseSeverity":"HIGH"}},{"cvssV4_0":{"version":"4.0","vectorString":"CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:L/SC:N/SI:N/SA:N","baseScore":8.7,"baseSeverity":"HIGH"}}],"problemTypes":[{"descriptions":[{"lang":"en","cweId":"CWE-288","description":"CWE-288: Authentication Bypass Using an Alternate Path or Channel","type":"CWE"}]}],"references":[{"url":"https://cert-portal.siemens.com/productcert/html/ssa-177847.html"}]},"adp":[{"metrics":[{"other":{"type":"ssvc","content":{"timestamp":"2025-08-12T13:31:42.534312Z","id":"CVE-2025-40743","options":[{"Exploitation":"none"},{"Automatable":"no"},{"Technical Impact":"total"}],"role":"CISA Coordinator","version":"2.0.3"}}}],"title":"CISA ADP Vulnrichment","providerMetadata":{"orgId":"134c704f-9b21-4f2e-91b3-4a467353bcc0","shortName":"CISA-ADP","dateUpdated":"2025-08-13T20:18:49.085Z"}}]}}