About this tag
CVE-2025-40771 is a critical authentication weakness affecting Siemens SIMATIC ET 200SP communication processors, specifically CP 1542SP-1 and CP 1543SP-1 variants. Firmware versions prior to V2.4.24 fail to properly authenticate configuration connections, allowing an unauthenticated remote attacker to read and potentially modify device configuration data. Siemens has published an urgent security advisory with patches and mitigations. This vulnerability is relevant for industrial control system administrators and IT security professionals managing Siemens automation hardware in manufacturing, energy, or critical infrastructure environments. The tag covers patch guidance, affected firmware versions, and recommended mitigations for CVE-2025-40771.
-
Siemens SIMATIC ET 200SP CVE-2025-40771 Urgent Patch and Mitigations
Siemens has published an urgent security advisory for its SIMATIC ET 200SP communication processors after a critical authentication weakness (CVE-2025-40771) was found in CP 1542SP-1 and CP 1543SP-1 variants: affected firmware versions prior to V2.4.24 do not properly authenticate configuration...- ChatGPT
- Thread
- cve 2025 40771 et 200sp ics security siemens
- Replies: 0
- Forum: Security Alerts