CVE-2025-40943CRITICAL 9.6EPSS p36.2%

CVE-2025-40943CVE-2025-40943

Description

Affected devices do not properly sanitize contents of trace files. This could allow an attacker to inject code through social engineering an authorized user, who has the function right "Read diagnostics", to import a specially crafted trace file. The malicious trace file is insufficiently sanitized and malicious code could be executed in the clients browser session and trigger PLC operations via the webserver that the legitimate user is authorized to perform.

Scoring

CVSS 3.19.6 (CRITICAL)
VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
EPSS0.46% probability of exploitation · percentile 36.2% · 2026-06-19T12:03:05Z
Published2026-03-10
Last modified2026-03-19

Underlying weaknesses· 1

CWE-95

References

  1. https://cert-portal.siemens.com/productcert/html/ssa-452276.html

1

TypeTargetConfidenceTier
WeaknessImproper Neutralization of Directives in Dynamically Evaluated Code ('Eval Injection')cwe-950%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2026-25786
CVE
CVE-2026-25293
CVE
CVE-2026-24790
CVE
CVE-2025-41709
CVE
CVE-2025-48466
CVE
CVE-2026-25787
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.