CVE 8.6 HIGH

CVE-2025-55221_CVE-2025-55221

December 1, 2025 invoker category_cve

8.6 / 10

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

Description

A denial of service vulnerability exists in the Modbus TCP and Modbus RTU over TCP USB Function functionality of Socomec DIRIS Digiware M-70 1.6.9. A specially crafted network packet can lead to a denial of service. An attacker can send an unauthenticated packet to trigger this vulnerability.This vulnerability is specific to the malicious message sent via Modbus TCP over port 502.

AI Analysis

Denial of service vulnerability in Modbus TCP and Modbus RTU over TCP USB Function functionality

Basic Information

ID CVE-2025-55221

Source talos

Published Dec 1, 2025 at 15:25

Modified Dec 1, 2025 at 20:14

Affected Product

Vendor Socomec

Product DIRIS Digiware M-70

Version 1.6.9

Affected Versions Socomec DIRIS Digiware M-70 1.6.9

CWE Classification

CWE-306

AI Assessment

AI Score 8.6 / 10

AI Severity High

Vendor Socomec

Product DIRIS Digiware M-70

Version 1.6.9

References

talosintelligence.com /vulnerability_reports/TALOS-2025-2251

{
    "lastseen": "",
    "description": "A denial of service vulnerability exists in the Modbus TCP and Modbus RTU over TCP USB Function functionality of Socomec DIRIS Digiware M-70 1.6.9. A specially crafted network packet can lead to a denial of service. An attacker can send an unauthenticated packet to trigger this vulnerability.This vulnerability is specific to the malicious message sent via Modbus TCP over port 502.",
    "published": "2025-12-01T15:25:06.962Z",
    "modified": "2025-12-01T20:14:33.387Z",
    "type": "cve",
    "title": "CVE-2025-55221",
    "source": "talos",
    "references": "https://talosintelligence.com/vulnerability_reports/TALOS-2025-2251",
    "id": "CVE-2025-55221",
    "bulletinFamily": "",
    "cwe": [
        "CWE-306"
    ],
    "cvelist": null,
    "sourceData": "Socomec DIRIS Digiware M-70 1.6.9",
    "sourceHref": "",
    "cvss": {
        "score": 8.6,
        "severity": "HIGH",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "DIRIS Digiware M-70",
    "version": "1.6.9",
    "vendor": "Socomec",
    "ai_description": "Denial of service vulnerability in Modbus TCP and Modbus RTU over TCP USB Function functionality",
    "ai_severity": "High",
    "ai_vendor": "Socomec",
    "ai_product": "DIRIS Digiware M-70",
    "ai_version": "1.6.9",
    "ai_score": 8.6
}

💭 Join the Security Discussion ❌ Cancel Reply