Siemens SIMATIC Devices Improper Input Validation (CVE-2025-21756)

Version 1.3

Oct 30, 2025, 2:57 PM

CVSS metrics ("CVSSv3 score" set to 7.8)
CVSS metrics ("CVSSv3 vector" set to "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H")
CVSS temporal metrics ("CVSSv3 temporal vector" set to "CVSS:3.0/E:H/RL:O/RC:C")
CVSSv3 severity (based on None, severity increased from "Medium" to "High")
Exploit attributes ("Exploitability ease" changed from "No known exploits are available" to "Exploits are available")
Exploit attributes ("Exploited by malware" set to "True")