https://cert-portal.siemens.com/productcert/html/ssa-081142.html
https://support.industry.siemens.com/cs/ww/en/view/110002017/
https://www.cisa.gov/news-events/ics-advisories/icsa-26-134-12
Severity: High
ID: 505458
File Name: tenable_ot_siemens_CVE-2025-40949.nasl
Version: 1.4
Type: Remote
Family: Tenable.ot
Published: 6/18/2026
Updated: 7/3/2026
Supported Sensors: Tenable OT Security
Risk Factor: High
Score: 7.7
Percentile: 99.05
Risk Factor: High
Base Score: 8.3
Temporal Score: 6.1
Vector: CVSS2#AV:N/AC:L/Au:M/C:C/I:C/A:C
CVSS Score Source: CVE-2025-40949
Risk Factor: Critical
Base Score: 9.1
Temporal Score: 7.9
Vector: CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C
Risk Factor: High
Base Score: 8.9
Threat Score: 5.9
Threat Vector: CVSS:4.0/E:U
Vector: CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H
CPE: cpe:/o:siemens:ruggedcom_rox_mx5000_firmware, cpe:/o:siemens:ruggedcom_rox_rx1400_firmware, cpe:/o:siemens:ruggedcom_rox_rx1500_firmware, cpe:/o:siemens:ruggedcom_rox_rx1501_firmware, cpe:/o:siemens:ruggedcom_rox_rx1510_firmware, cpe:/o:siemens:ruggedcom_rox_rx1511_firmware, cpe:/o:siemens:ruggedcom_rox_rx1512_firmware, cpe:/o:siemens:ruggedcom_rox_rx5000_firmware, cpe:/o:siemens:ruggedcom_rox_rx1524_firmware, cpe:/o:siemens:ruggedcom_rox_rx1536_firmware, cpe:/o:siemens:ruggedcom_rox_mx5000re_firmware
Required KB Items: Tenable.ot/Siemens
Exploit Ease: No known exploits are available
Patch Publication Date: 5/12/2026
Vulnerability Publication Date: 5/12/2026
CVE: CVE-2025-40949
CWE: 78