CVE-2025-40805
Published: Jan 13, 2026
Modified: May 12, 2026
CVSS v3.1
10.0
Description
Affected devices do not properly enforce user authentication on specific API endpoints. This could facilitate an unauthenticated remote attacker to circumvent authentication and impersonate a legitimate user. Successful exploitation requires that the attacker has learned the identity of a legitimate user.
| Vendor | Product | Versions |
|---|---|---|
Siemens | Industrial Edge Cloud Device (IECD) | affected 0 - < V1.24.2 |
Siemens | Industrial Edge Device Kit - arm64 V1.10 | affected 0 - < * |
Siemens | Industrial Edge Device Kit - arm64 V1.11 | affected 0 - < * |
Siemens | Industrial Edge Device Kit - arm64 V1.12 | affected 0 - < * |
Siemens | Industrial Edge Device Kit - arm64 V1.13 | affected 0 - < * |
Siemens | Industrial Edge Device Kit - arm64 V1.14 | affected 0 - < * |
Siemens | Industrial Edge Device Kit - arm64 V1.15 | affected 0 - < * |
Siemens | Industrial Edge Device Kit - arm64 V1.16 | affected 0 - < * |
Siemens | Industrial Edge Device Kit - arm64 V1.17 | affected 0 - < * |
Siemens | Industrial Edge Device Kit - arm64 V1.18 | affected 0 - < * |
Siemens | Industrial Edge Device Kit - arm64 V1.19 | affected 0 - < * |
Siemens | Industrial Edge Device Kit - arm64 V1.20 | affected 0 - < * |
Siemens | Industrial Edge Device Kit - arm64 V1.21 | affected 0 - < * |
Siemens | Industrial Edge Device Kit - arm64 V1.22 | affected 0 - < * |
Siemens | Industrial Edge Device Kit - arm64 V1.23 | affected 0 - < * |
Siemens | Industrial Edge Device Kit - arm64 V1.24 | affected 0 - < V1.24.2 |
Siemens | Industrial Edge Device Kit - arm64 V1.25 | affected 0 - < V1.25.1 |
Siemens | Industrial Edge Device Kit - arm64 V1.5 | affected 0 - < * |
Siemens | Industrial Edge Device Kit - arm64 V1.6 | affected 0 - < * |
Siemens | Industrial Edge Device Kit - arm64 V1.7 | affected 0 - < * |
Siemens | Industrial Edge Device Kit - arm64 V1.8 | affected 0 - < * |
Siemens | Industrial Edge Device Kit - arm64 V1.9 | affected 0 - < * |
Siemens | Industrial Edge Device Kit - x86-64 V1.10 | affected 0 - < * |
Siemens | Industrial Edge Device Kit - x86-64 V1.11 | affected 0 - < * |
Siemens | Industrial Edge Device Kit - x86-64 V1.12 | affected 0 - < * |
Siemens | Industrial Edge Device Kit - x86-64 V1.13 | affected 0 - < * |
Siemens | Industrial Edge Device Kit - x86-64 V1.14 | affected 0 - < * |
Siemens | Industrial Edge Device Kit - x86-64 V1.15 | affected 0 - < * |
Siemens | Industrial Edge Device Kit - x86-64 V1.16 | affected 0 - < * |
Siemens | Industrial Edge Device Kit - x86-64 V1.17 | affected 0 - < * |
Siemens | Industrial Edge Device Kit - x86-64 V1.18 | affected 0 - < * |
Siemens | Industrial Edge Device Kit - x86-64 V1.19 | affected 0 - < * |
Siemens | Industrial Edge Device Kit - x86-64 V1.20 | affected 0 - < * |
Siemens | Industrial Edge Device Kit - x86-64 V1.21 | affected 0 - < * |
Siemens | Industrial Edge Device Kit - x86-64 V1.22 | affected 0 - < * |
Siemens | Industrial Edge Device Kit - x86-64 V1.23 | affected 0 - < * |
Siemens | Industrial Edge Device Kit - x86-64 V1.24 | affected 0 - < V1.24.2 |
Siemens | Industrial Edge Device Kit - x86-64 V1.25 | affected 0 - < V1.25.1 |
Siemens | Industrial Edge Device Kit - x86-64 V1.5 | affected 0 - < * |
Siemens | Industrial Edge Device Kit - x86-64 V1.6 | affected 0 - < * |
Siemens | Industrial Edge Device Kit - x86-64 V1.7 | affected 0 - < * |
Siemens | Industrial Edge Device Kit - x86-64 V1.8 | affected 0 - < * |
Siemens | Industrial Edge Device Kit - x86-64 V1.9 | affected 0 - < * |
Siemens | Industrial Edge Own Device (IEOD) | affected 0 - < V1.24.2 |
Siemens | Industrial Edge Virtual Device (IEVD) | affected 0 - < V1.24.2 |
Siemens | SCALANCE LPE9413 | affected 0 - < V2.2 |
Siemens | SCALANCE LPE9433 | affected 0 - < V2.2 |
Siemens | SIMATIC Automation Workstation 19" | affected 0 - < V1.3 |
Siemens | SIMATIC Automation Workstation 24" | affected 0 - < V1.3 |
Siemens | SIMATIC HMI MTP1000 Unified Comfort Panel | affected 0 - < V21 |
Siemens | SIMATIC HMI MTP1000 Unified Comfort Panel hygienic | affected 0 - < V21 |
Siemens | SIMATIC HMI MTP1000 Unified Comfort Panel hygienic neutral design | affected 0 - < V21 |
Siemens | SIMATIC HMI MTP1000, Unified Comfort Panel neutral | affected 0 - < V21 |
Siemens | SIMATIC HMI MTP1200 Comfort Pro for stand (expandable, flange at the bottom) | affected 0 - < V21 |
Siemens | SIMATIC HMI MTP1200 Comfort Pro for support arm (expandable, round tube) and extension unit | affected 0 - < V21 |
Siemens | SIMATIC HMI MTP1200 Comfort Pro for support arm (not extendable, flange on top) | affected 0 - < V21 |
Siemens | SIMATIC HMI MTP1200 Comfort Pro neutral design for stand (expandable, flange at the bottom) | affected 0 - < V21 |
Siemens | SIMATIC HMI MTP1200 Comfort Pro neutral design for support arm (expandable, round tube) and extensio | affected 0 - < V21 |
Siemens | SIMATIC HMI MTP1200 Comfort Pro neutral design for support arm (not extendable, flange on top) | affected 0 - < V21 |
Siemens | SIMATIC HMI MTP1200 Unified Comfort Panel | affected 0 - < V21 |
Siemens | SIMATIC HMI MTP1200 Unified Comfort Panel hygienic | affected 0 - < V21 |
Siemens | SIMATIC HMI MTP1200 Unified Comfort Panel hygienic neutral design | affected 0 - < V21 |
Siemens | SIMATIC HMI MTP1200 Unified Comfort Panel neutral design | affected 0 - < V21 |
Siemens | SIMATIC HMI MTP1500 Comfort Pro for stand (expandable, flange at the bottom) | affected 0 - < V21 |
Siemens | SIMATIC HMI MTP1500 Comfort Pro for support arm (expandable, round tube) and extension unit | affected 0 - < V21 |
Siemens | SIMATIC HMI MTP1500 Comfort Pro for support arm (not extendable, flange on top) | affected 0 - < V21 |
Siemens | SIMATIC HMI MTP1500 Comfort Pro neutral design for stand (expandable, flange at the bottom) | affected 0 - < V21 |
Siemens | SIMATIC HMI MTP1500 Comfort Pro neutral design for support arm (expandable, round tube) and extensio | affected 0 - < V21 |
Siemens | SIMATIC HMI MTP1500 Comfort Pro neutral design for support arm (not extendable, flange on top) | affected 0 - < V21 |
Siemens | SIMATIC HMI MTP1500 Unified Comfort Panel | affected 0 - < V21 |
Siemens | SIMATIC HMI MTP1500 Unified Comfort Panel hygienic | affected 0 - < V21 |
Siemens | SIMATIC HMI MTP1500 Unified Comfort Panel hygienic neutral design | affected 0 - < V21 |
Siemens | SIMATIC HMI MTP1500 Unified Comfort Panel neutral design | affected 0 - < V21 |
Siemens | SIMATIC HMI MTP1900 Comfort Pro for stand (expandable, flange at the bottom) | affected 0 - < V21 |
Siemens | SIMATIC HMI MTP1900 Comfort Pro for support arm (expandable, round tube) and extension unit | affected 0 - < V21 |
Siemens | SIMATIC HMI MTP1900 Comfort Pro for support arm (not extendable, flange on top) | affected 0 - < V21 |
Siemens | SIMATIC HMI MTP1900 Comfort Pro neutral design for stand (expandable, flange at the bottom) | affected 0 - < V21 |
Siemens | SIMATIC HMI MTP1900 Comfort Pro neutral design for support arm (expandable, round tube) and extensio | affected 0 - < V21 |
Siemens | SIMATIC HMI MTP1900 Comfort Pro neutral design for support arm (not extendable, flange on top) | affected 0 - < V21 |
Siemens | SIMATIC HMI MTP1900 Unified Comfort Panel | affected 0 - < V21 |
Siemens | SIMATIC HMI MTP1900 Unified Comfort Panel hygienic | affected 0 - < V21 |
Siemens | SIMATIC HMI MTP1900 Unified Comfort Panel hygienic neutral design | affected 0 - < V21 |
Siemens | SIMATIC HMI MTP1900 Unified Comfort Panel neutral design | affected 0 - < V21 |
Siemens | SIMATIC HMI MTP2200 Comfort Pro for stand (expandable, flange at the bottom) | affected 0 - < V21 |
Siemens | SIMATIC HMI MTP2200 Comfort Pro for support arm (expandable, round tube) and extension unit | affected 0 - < V21 |
Siemens | SIMATIC HMI MTP2200 Comfort Pro for support arm (not extendable, flange on top) | affected 0 - < V21 |
Siemens | SIMATIC HMI MTP2200 Comfort Pro neutral design for stand (expandable, flange at the bottom) | affected 0 - < V21 |
Siemens | SIMATIC HMI MTP2200 Comfort Pro neutral design for support arm (expandable, round tube) and extensio | affected 0 - < V21 |
Siemens | SIMATIC HMI MTP2200 Comfort Pro neutral design for support arm (not extendable, flange on top) | affected 0 - < V21 |
Siemens | SIMATIC HMI MTP2200 Unified Comfort Hygienic | affected 0 - < V21 |
Siemens | SIMATIC HMI MTP2200 Unified Comfort Hygienic neutral design | affected 0 - < V21 |
Siemens | SIMATIC HMI MTP2200 Unified Comfort Panel | affected 0 - < V21 |
Siemens | SIMATIC HMI MTP2200 Unified Comfort Panel neutral design | affected 0 - < V21 |
Siemens | SIMATIC HMI MTP700 Unified Comfort Panel | affected 0 - < V21 |
Siemens | SIMATIC HMI MTP700 Unified Comfort Panel hygienic neutral design | affected 0 - < V21 |
Siemens | SIMATIC HMI MTP700 Unified Comfort Panel hygienic neutral design | affected 0 - < V21 |
Siemens | SIMATIC HMI MTP700, Unified Comfort Panel neutral design | affected 0 - < V21 |
Siemens | SIMATIC IOT2050 | affected 0 - < V1.25.1 |
Siemens | SIMATIC IPC BX-39A Industrial Edge Device | affected 0 - < V3.1 |
Siemens | SIMATIC IPC BX-59A Industrial Edge Device | affected 0 - < V3.1 |
Siemens | SIMATIC IPC127E Industrial Edge Device | affected 0 - < V3.1 |
Siemens | SIMATIC IPC227E Industrial Edge Device | affected 0 - < V3.1 |
Siemens | SIMATIC IPC227G Industrial Edge Device | affected 0 - < V3.1 |
Siemens | SIMATIC IPC427E Industrial Edge Device | affected 0 - < V3.1 |
Siemens | SIMATIC IPC847E Industrial Edge Device | affected 0 - < V3.1 |
Siemens | SIPLUS HMI MTP1000 Unified Comfort | affected 0 - < V21 |
Siemens | SIPLUS HMI MTP1200 Unified Comfort | affected 0 - < V21 |
Siemens | SIPLUS HMI MTP700 Unified Comfort | affected 0 - < V21 |
Weaknesses (CWE)
CVSS v3.1 Details
CVSS v3.1 Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now