CVE-2025-40943 CRITICAL

CVE-2025-40943

Vendor Siemens
Product SIMATIC Drive Controller CPU 1504D TF
Weakness CWE-95 · Eval injection
Published March 10, 2026
Last update May 12, 2026

CVSS base score

9.6/10
Attack vector Network
Attack complexity Low
Privileges required None
User interaction Required
Confidentiality High
Integrity High

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H

What the vulnerability does

01Description

Affected devices do not properly sanitize contents of trace files. This could allow an attacker to inject code through social engineering an authorized user, who has the function right "Read diagnostics", to import a specially crafted trace file. The malicious trace file is insufficiently sanitized and malicious code could be executed in the clients browser session and trigger PLC operations via the webserver that the legitimate user is authorized to perform.

Key dates

02Disclosure timeline

March 10, 2026 CVE published
May 12, 2026 Record updated