CVE-2025-40757_CVE-2025-40757

5.3 / 10

MEDIUM

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Description

A vulnerability has been identified in APOGEE PXC Series (BACnet) (All versions), APOGEE PXC Series (P2 Ethernet) (All versions), TALON TC Series (BACnet) (All versions). Affected devices connected to the network allow unrestricted access to sensitive files, such as databases. This could allow an attacker to download encrypted .db file containing passwords.

Basic Information

ID CVE-2025-40757

Source siemens

Published Sep 9, 2025 at 08:47

Affected Product

Vendor Siemens

Product APOGEE PXC Series (BACnet)

Affected Versions Siemens APOGEE PXC Series (BACnet) 0
Siemens APOGEE PXC Series (P2 Ethernet) 0
Siemens TALON TC Series (BACnet) 0

CWE Classification

CWE-200

References

cert-portal.siemens.com /productcert/html/ssa-916339.html

{
    "lastseen": "",
    "description": "A vulnerability has been identified in APOGEE PXC Series (BACnet) (All versions), APOGEE PXC Series (P2 Ethernet) (All versions), TALON TC Series (BACnet) (All versions). Affected devices connected to the network allow unrestricted access to sensitive files, such as databases. This could allow an attacker to download encrypted .db file containing passwords.",
    "published": "2025-09-09T08:47:59.102Z",
    "modified": "2025-09-09T08:47:59.102Z",
    "type": "cve",
    "title": "CVE-2025-40757",
    "source": "siemens",
    "references": "https://cert-portal.siemens.com/productcert/html/ssa-916339.html",
    "id": "CVE-2025-40757",
    "bulletinFamily": "",
    "cwe": [
        "CWE-200"
    ],
    "cvelist": null,
    "sourceData": "Siemens APOGEE PXC Series (BACnet) 0\nSiemens APOGEE PXC Series (P2 Ethernet) 0\nSiemens TALON TC Series (BACnet) 0",
    "sourceHref": "",
    "cvss": {
        "score": 5.3,
        "severity": "MEDIUM",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "APOGEE PXC Series (BACnet)",
    "version": "0",
    "vendor": "Siemens",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}