CNNVD-202508-1031 Information
CNNVD ID
CNNVD-202508-1031
Related CVE
- CNNVD Published: 2025-08-12
Description (Chinese)
Siemens SINUMERIK 840D sl等都是德国西门子(Siemens)公司的产品。Siemens SINUMERIK 840D sl是一套高级机床数控系统。Siemens SINUMERIK是一套控制系统。Siemens Sinumerik 828D是一款基于面板的 Cnc。 Siemens多款产品存在安全漏洞,该漏洞源于VNC访问服务身份验证不当,可能导致未经授权的远程访问。以下产品及版本受到影响:SINUMERIK 828D PPU.4 V4.95 SP5之前版本、SINUMERIK 828D PPU.5 V5.25 SP1之前版本、SINUMERIK 840D sl V4.95 SP5之前版本、SINUMERIK MC V1.25 SP1之前版本、SINUMERIK MC V1.15 V1.15 SP5之前版本、SINUMERIK ONE V6.25 SP1之前版本和SINUMERIK ONE V6.15 V6.15 SP5之前版本。
Description (English)
Siemens Sinumrik 840D sl and others are products of Siemens, Germany. Siemens SINUMERIK 840D sl is an advanced machine-bed number control system. Siemens Sinumerik is a control system. Siemens Sinumerik 828D is a panel-based Cnc. There is a security loophole in multiple Siemens products, which stems from inadequate identification of VNC access services and may lead to unauthorized remote access. The following products and versions have been affected: SINUMERN 828D PPU.4 V4.95 SP5, SINUMRIK 828D PPU.5 V5.25 SP1, SINUMRIK 840D sl V4.95 SP5, SINUMERIK MC V1.25 pre-SP1, SINUMERIK MC V1.15 V1.15 VSP5, SINUMERIK ONEENE V6.25 SP5, and SINUMERIK V6.25 SP1 and SNUMERIK NE V6.15 VSP5.
Hazard Level
Medium
Vulnerability Type
其他
Affected Vendor
西门子
Published
2025-08-12
Last Modified
2026-02-24
References
https://cert-portal.siemens.com/productcert/html/ssa-177847.html
Patch
https://cert-portal.siemens.com/productcert/html/ssa-177847.html
Share on: