Detections
Analytics
Siemens SIPROTEC 5 Allocation of Resources Without Limits or Throttling (CVE-2025-40570)
low Tenable OT Security Plugin ID 504808
Synopsis
The remote OT asset is affected by a vulnerability.Description
Affected devices do not properly limit the bandwidth for incoming network packets over their local USB port. This could allow an attacker with physical access to send specially crafted packets with high bandwidth to the affected devices thus forcing them to exhaust their memory and stop responding to any network traffic via the local USB port. Affected devices reset themselves automatically after a successful attack. The protection function is not affected of this vulnerability.This plugin only works with Tenable.ot.
Please visit https://www.tenable.com/products/tenable-ot for more information.
Solution
Refer to the vendor advisory.See Also
https://cert-portal.siemens.com/productcert/html/ssa-894058.html
https://www.cisa.gov/news-events/ics-advisories/icsa-25-226-10
https://support.industry.siemens.com/cs/ww/en/view/109757433/
https://support.industry.siemens.com/cs/ww/en/view/109796884/
https://support.industry.siemens.com/cs/ww/en/view/109814150/
Plugin Details
Severity: Low
ID: 504808
Version: 1.1
Type: remote
Family: Tenable.ot
Published: 11/18/2025
Updated: 11/18/2025
Supported Sensors: Tenable OT Security
Risk Information
VPR
Risk Factor: Low
Score: 2.2
CVSS v3
Risk Factor: Low
Base Score: 2.4
Vector: CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
Vulnerability Information
CPE: cpe:/o:siemens:siprotec_5_7sa86_%28cp300%29_firmware, cpe:/o:siemens:siprotec_5_7ve85_%28cp300%29_firmware, cpe:/o:siemens:siprotec_5_7sd87_%28cp300%29_firmware, cpe:/o:siemens:siprotec_5_7sl82_%28cp150%29_firmware, cpe:/o:siemens:siprotec_5_7sk85_%28cp300%29_firmware, cpe:/o:siemens:siprotec_5_compact_7sx800_%28cp050%29_firmware, cpe:/o:siemens:siprotec_5_7sk82_%28cp150%29_firmware, cpe:/o:siemens:siprotec_5_7sj81_%28cp150%29_firmware, cpe:/o:siemens:siprotec_5_6md86_%28cp300%29_firmware, cpe:/o:siemens:siprotec_5_7vu85_%28cp300%29_firmware, cpe:/o:siemens:siprotec_5_7ut86_%28cp300%29_firmware, cpe:/o:siemens:siprotec_5_6mu85_%28cp300%29_firmware, cpe:/o:siemens:siprotec_5_7st86_%28cp300%29_firmware, cpe:/o:siemens:siprotec_5_7sd82_%28cp150%29_firmware, cpe:/o:siemens:siprotec_5_6md85_%28cp300%29_firmware, cpe:/o:siemens:siprotec_5_7ut85_%28cp300%29_firmware, cpe:/o:siemens:siprotec_5_7sd86_%28cp300%29_firmware, cpe:/o:siemens:siprotec_5_7sx82_%28cp150%29_firmware, cpe:/o:siemens:siprotec_5_7vk87_%28cp300%29_firmware, cpe:/o:siemens:siprotec_5_7sj82_%28cp150%29_firmware, cpe:/o:siemens:siprotec_5_7ke85_%28cp300%29_firmware, cpe:/o:siemens:siprotec_5_7um85_%28cp300%29_firmware, cpe:/o:siemens:siprotec_5_7sl87_%28cp300%29_firmware, cpe:/o:siemens:siprotec_5_7sj86_%28cp300%29_firmware, cpe:/o:siemens:siprotec_5_7sx85_%28cp300%29_firmware, cpe:/o:siemens:siprotec_5_7sa82_%28cp150%29_firmware, cpe:/o:siemens:siprotec_5_7ut82_%28cp150%29_firmware, cpe:/o:siemens:siprotec_5_7sy82_%28cp150%29_firmware, cpe:/o:siemens:siprotec_5_7st85_%28cp300%29_firmware, cpe:/o:siemens:siprotec_5_7sj85_%28cp300%29_firmware, cpe:/o:siemens:siprotec_5_7sa87_%28cp300%29_firmware, cpe:/o:siemens:siprotec_5_7ss85_%28cp300%29_firmware, cpe:/o:siemens:siprotec_5_6md84_%28cp300%29_firmware, cpe:/o:siemens:siprotec_5_6md89_%28cp300%29_firmware, cpe:/o:siemens:siprotec_5_7ut87_%28cp300%29_firmware, cpe:/o:siemens:siprotec_5_7sl86_%28cp300%29_firmware
Required KB Items: Tenable.ot/Siemens
Exploit Ease: No known exploits are available
Patch Publication Date: 8/12/2025
Vulnerability Publication Date: 8/12/2025
Reference Information
CVE: CVE-2025-40570
CWE: 770