CVE 8.6 HIGH

CVE-2025-23417_CVE-2025-23417

December 1, 2025 invoker category_cve

8.6 / 10

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

Description

A denial of service vulnerability exists in the Modbus RTU over TCP functionality of Socomec DIRIS Digiware M-70 1.6.9. A specially crafted network packet can lead to denial of service. An attacker can send an unauthenticated packet to trigger this vulnerability.

AI Analysis

Denial of service vulnerability in Modbus RTU over TCP functionality

Basic Information

ID CVE-2025-23417

Source talos

Published Dec 1, 2025 at 15:25

Modified Dec 1, 2025 at 20:19

Affected Product

Vendor Socomec

Product DIRIS Digiware M-70

Version 1.6.9

Affected Versions Socomec DIRIS Digiware M-70 1.6.9

CWE Classification

CWE-306

AI Assessment

AI Score 8.6 / 10

AI Severity High

Vendor Socomec

Product DIRIS Digiware M-70

Version 1.6.9

References

{
    "lastseen": "",
    "description": "A denial of service vulnerability exists in the Modbus RTU over TCP functionality of Socomec DIRIS Digiware M-70 1.6.9. A specially crafted network packet can lead to denial of service. An attacker can send an unauthenticated packet to trigger this vulnerability.",
    "published": "2025-12-01T15:25:23.417Z",
    "modified": "2025-12-01T20:19:29.422Z",
    "type": "cve",
    "title": "CVE-2025-23417",
    "source": "talos",
    "references": "https://talosintelligence.com/vulnerability_reports/TALOS-2025-2139\nhttps://www.socomec.fr/sites/default/files/2025-04/CVE-2025-23417---Diris-Digiware-Webview-_VULNERABILITIES_2025-04-11-17-16-19_English_0.pdf",
    "id": "CVE-2025-23417",
    "bulletinFamily": "",
    "cwe": [
        "CWE-306"
    ],
    "cvelist": null,
    "sourceData": "Socomec DIRIS Digiware M-70 1.6.9",
    "sourceHref": "",
    "cvss": {
        "score": 8.6,
        "severity": "HIGH",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "DIRIS Digiware M-70",
    "version": "1.6.9",
    "vendor": "Socomec",
    "ai_description": "Denial of service vulnerability in Modbus RTU over TCP functionality",
    "ai_severity": "High",
    "ai_vendor": "Socomec",
    "ai_product": "DIRIS Digiware M-70",
    "ai_version": "1.6.9",
    "ai_score": 8.6
}

💭 Join the Security Discussion ❌ Cancel Reply