{“lastseen”:””,”description”:”A vulnerability has been identified in SINUMERIK 828D PPU.4 (All versions \\u003c V4.95 SP5), SINUMERIK 828D PPU.5 (All versions \\u003c V5.25 SP1), SINUMERIK 840D sl (All versions \\u003c V4.95 SP5), SINUMERIK MC (All versions \\u003c V1.25 SP1), SINUMERIK MC V1.15 (All versions \\u003c V1.15 SP5), SINUMERIK ONE (All versions \\u003c V6.25 SP1), SINUMERIK ONE V6.15 (All versions \\u003c V6.15 SP5). The affected application improperly validates authentication for its VNC access service, allowing access with insufficient password verification.\\r\\nThis could allow an attacker to gain unauthorized remote access and potentially compromise system confidentiality, integrity, or availability.”,”published”:”2025-08-12T11:17:03.997Z”,”modified”:”2025-08-12T11:17:03.997Z”,”type”:”cve”,”title”:”CVE-2025-40743″,”source”:”siemens”,”references”:”https:\/\/cert-portal.siemens.com\/productcert\/html\/ssa-177847.html”,”id”:”CVE-2025-40743″,”bulletinFamily”:””,”cwe”:[“CWE-288″],”cvelist”:null,”sourceData”:”Siemens SINUMERIK 828D PPU.4 0\\nSiemens SINUMERIK 828D PPU.5 0\\nSiemens SINUMERIK 840D sl 0\\nSiemens SINUMERIK MC 0\\nSiemens SINUMERIK MC V1.15 0\\nSiemens SINUMERIK ONE 0\\nSiemens SINUMERIK ONE V6.15 0″,”sourceHref”:””,”cvss”:{“score”:8.3,”severity”:”HIGH”,”vector”:”CVSS:3.1\/AV:A\/AC:L\/PR:N\/UI:N\/S:U\/C:H\/I:H\/A:L”,”version”:”3.1″},”cvss2″:{},”cvss3″:{“version”:””,”vectorString”:””,”baseScore”:0,”baseSeverity”:””,”attackVector”:””,”attackComplexity”:””,”privilegesRequired”:””,”userInteraction”:””,”scope”:””,”confidentialityImpact”:””,”integrityImpact”:””,”availabilityImpact”:””,”cvssV3″:{“version”:””,”vectorString”:””,”baseScore”:0,”baseSeverity”:””,”attackVector”:””,”attackComplexity”:””,”privilegesRequired”:””,”userInteraction”:””,”scope”:””,”confidentialityImpact”:””,”integrityImpact”:””,”availabilityImpact”:””}},”href”:””,”category_name”:”CVE”,”post_link”:””,”product”:”SINUMERIK 828D PPU.4″,”version”:”0″,”vendor”:”Siemens”,”ai_description”:”The affected application improperly validates authentication for its VNC access service, allowing access with insufficient password verification. This could allow an attacker to gain unauthorized remote access and potentially compromise system confidentiality, integrity, or availability.”,”ai_severity”:”HIGH”,”ai_vendor”:”Siemens”,”ai_product”:”SINUMERIK”,”ai_version”:”828D PPU.4 (All versions \\u003c V4.95 SP5), 828D PPU.5 (All versions \\u003c V5.25 SP1), 840D sl (All versions \\u003c V4.95 SP5), MC (All versions \\u003c V1.25 SP1), MC V1.15 (All versions \\u003c V1.15 SP5), ONE (All versions \\u003c V6.25 SP1), ONE V6.15 (All versions \\u003c V6.15 SP5)”,”ai_score”:8.3}<\/p>\n","protected":false},"excerpt":{"rendered":"
{“lastseen”:””,”description”:”A vulnerability has been identified in SINUMERIK 828D PPU.4 (All versions \\u003c V4.95 SP5), SINUMERIK 828D PPU.5 (All versions \\u003c V5.25 SP1), SINUMERIK 840D sl…<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[2],"tags":[6,8,99,12,15,13,7,11,5],"class_list":["post-10482","post","type-post","status-publish","format-standard","hentry","category-category_cve","tag-cve","tag-cvss","tag-cvss-83","tag-exploit","tag-high","tag-news","tag-security","tag-tapic","tag-vulnerability"],"yoast_head":"\n