CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2025-27395

A vulnerability has been identified in SCALANCE LPE9403 (6GK5998-3GS00-2AC2) (All versions < V4.0). Affected devices do not properly limit the scope of files accessible through and the privileges of the SFTP functionality. This could allow an authenticated highly-privileged remote attacker to read and write arbitrary files.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 30.4%

CVSS Severity

CVSS v3 Score 7.2

References

https://cert-portal.siemens.com/productcert/html/ssa-075201.html

Products affected by CVE-2025-27395

Siemens » Scalance Lpe9403 » Version: N/A

cpe:2.3:h:siemens:scalance_lpe9403:-
Siemens » Scalance Lpe9403 Firmware » Version: N/A

cpe:2.3:o:siemens:scalance_lpe9403_firmware:-
Siemens » Scalance Lpe9403 Firmware » Version: 2.0

cpe:2.3:o:siemens:scalance_lpe9403_firmware:2.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-27395

Products

Pricing

Contact Us