Vulnerability Details CVE-2025-40576
A vulnerability has been identified in SCALANCE LPE9403 (6GK5998-3GS00-2AC2) (All versions). Affected devices do not properly validate incoming Profinet packets.
An unauthenticated remote attacker can exploit this flaw by sending a specially crafted malicious packet, which leads to a crash of the dcpd process.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 12.0%
CVSS Severity
CVSS v3 Score 4.3
Products affected by CVE-2025-40576
-
cpe:2.3:h:siemens:scalance_lpe9403:-
-
cpe:2.3:o:siemens:scalance_lpe9403_firmware:-