{“lastseen”:””,”description”:”Affected products do not properly enforce TCP sequence number validation in specific scenarios but accept values within a broad range. This could allow an unauthenticated remote attacker e.g. to interfere with connection setup, potentially leading to a denial of service. The attack succeeds only if an attacker can inject IP packets with spoofed addresses at precisely timed moments, and it affects only TCP-based services.”,”published”:”2025-12-09T10:44:30.977Z”,”modified”:”2025-12-09T10:44:30.977Z”,”type”:”cve”,”title”:”CVE-2025-40820″,”source”:”siemens”,”references”:”https:\/\/cert-portal.siemens.com\/productcert\/html\/ssa-915282.html”,”id”:”CVE-2025-40820″,”bulletinFamily”:””,”cwe”:[“CWE-940″],”cvelist”:null,”sourceData”:”Siemens SIDOOR ATD430W 0\\nSiemens SIDOOR ATE530G COATED 0\\nSiemens SIDOOR ATE530S COATED 0\\nSiemens SIMATIC CFU DIQ 0\\nSiemens SIMATIC CFU PA 0\\nSiemens SIMATIC CFU PA 0\\nSiemens SIMATIC ET 200AL IM 157-1 PN 0\\nSiemens SIMATIC ET 200clean, CM 8x IO-Link 0\\nSiemens SIMATIC ET 200clean, DI 16x24VDC 0\\nSiemens SIMATIC ET 200clean, DIQ 16x24VDC\/0,5A 0\\nSiemens SIMATIC ET 200eco PN, AI 8xRTD\/TC, M12-L V5.1.1\\nSiemens SIMATIC ET 200eco PN, CM 4x IO-Link, M12-L V5.1.1\\nSiemens SIMATIC ET 200eco PN, CM 8x IO-Link, M12-L V5.1.1\\nSiemens SIMATIC ET 200eco PN, CM 8x IO-Link, M12-L V5.1.1\\nSiemens SIMATIC ET 200eco PN, DI 16x24VDC, M12-L V5.1.1\\nSiemens SIMATIC ET 200eco PN, DI 8x24VDC, M12-L V5.1.1\\nSiemens SIMATIC ET 200eco PN, DIQ 16x24VDC\/2A, M12-L V5.1.1\\nSiemens SIMATIC ET 200eco PN, DQ 8x24VDC\/0,5A, M12-L V5.1.1\\nSiemens SIMATIC ET 200eco PN, DQ 8x24VDC\/2A, M12-L V5.1.1\\nSiemens SIMATIC ET 200MP IM 155-5 PN HF V4.2.0\\nSiemens SIMATIC ET 200pro IM 154-8 PN\/DP CPU 0\\nSiemens SIMATIC ET 200pro IM 154-8F PN\/DP CPU 0\\nSiemens SIMATIC ET 200pro IM 154-8FX PN\/DP CPU 0\\nSiemens SIMATIC ET 200S IM 151-8 PN\/DP CPU 0\\nSiemens SIMATIC ET 200S IM 151-8F PN\/DP CPU 0\\nSiemens SIMATIC ET 200SP CPU 1510SP F-1 PN 0\\nSiemens SIMATIC ET 200SP CPU 1510SP-1 PN 0\\nSiemens SIMATIC ET 200SP CPU 1512SP F-1 PN 0\\nSiemens SIMATIC ET 200SP CPU 1512SP-1 PN 0\\nSiemens SIMATIC ET 200SP IM 155-6 MF HF 0\\nSiemens SIMATIC ET 200SP IM 155-6 PN HA (incl. SIPLUS variants) 0\\nSiemens SIMATIC ET 200SP IM 155-6 PN HF V4.2.0\\nSiemens SIMATIC ET 200SP IM 155-6 PN\/2 HF V4.2.0\\nSiemens SIMATIC ET 200SP IM 155-6 PN\/3 HF V4.2.0\\nSiemens SIMATIC PN\/MF Coupler 0\\nSiemens SIMATIC PN\/PN Coupler 0\\nSiemens SIMATIC Power Line Booster PLB, Base Module 0\\nSiemens SIMATIC Power Line Booster PLB, Modem Module ST 0\\nSiemens SIMATIC S7-1200 CPU 1211C AC\/DC\/Rly 0\\nSiemens SIMATIC S7-1200 CPU 1211C DC\/DC\/DC 0\\nSiemens SIMATIC S7-1200 CPU 1211C DC\/DC\/Rly 0\\nSiemens SIMATIC S7-1200 CPU 1212C AC\/DC\/Rly 0\\nSiemens SIMATIC S7-1200 CPU 1212C DC\/DC\/DC 0\\nSiemens SIMATIC S7-1200 CPU 1212C DC\/DC\/Rly 0\\nSiemens SIMATIC S7-1200 CPU 1212FC DC\/DC\/DC 0\\nSiemens SIMATIC S7-1200 CPU 1212FC DC\/DC\/Rly 0\\nSiemens SIMATIC S7-1200 CPU 1214C AC\/DC\/Rly 0\\nSiemens SIMATIC S7-1200 CPU 1214C DC\/DC\/DC 0\\nSiemens SIMATIC S7-1200 CPU 1214C DC\/DC\/Rly 0\\nSiemens SIMATIC S7-1200 CPU 1214FC DC\/DC\/DC 0\\nSiemens SIMATIC S7-1200 CPU 1214FC DC\/DC\/Rly 0\\nSiemens SIMATIC S7-1200 CPU 1215C AC\/DC\/Rly 0\\nSiemens SIMATIC S7-1200 CPU 1215C DC\/DC\/DC 0\\nSiemens SIMATIC S7-1200 CPU 1215C DC\/DC\/Rly 0\\nSiemens SIMATIC S7-1200 CPU 1215FC DC\/DC\/DC 0\\nSiemens SIMATIC S7-1200 CPU 1215FC DC\/DC\/Rly 0\\nSiemens SIMATIC S7-1200 CPU 1217C DC\/DC\/DC 0\\nSiemens SIMATIC S7-1500 CPU 1511-1 PN 0\\nSiemens SIMATIC S7-1500 CPU 1511F-1 PN 0\\nSiemens SIMATIC S7-1500 CPU 1513-1 PN 0\\nSiemens SIMATIC S7-1500 CPU 1513F-1 PN 0\\nSiemens SIMATIC S7-1500 CPU 1515-2 PN 0\\nSiemens SIMATIC S7-1500 CPU 1515F-2 PN 0\\nSiemens SIMATIC S7-1500 CPU 1516-3 PN\/DP 0\\nSiemens SIMATIC S7-1500 CPU 1516F-3 PN\/DP 0\\nSiemens SIMATIC S7-200 SMART CPU CR40 0\\nSiemens SIMATIC S7-200 SMART CPU CR60 0\\nSiemens SIMATIC S7-200 SMART CPU SR20 0\\nSiemens SIMATIC S7-200 SMART CPU SR20 0\\nSiemens SIMATIC S7-200 SMART CPU SR30 0\\nSiemens SIMATIC S7-200 SMART CPU SR30 0\\nSiemens SIMATIC S7-200 SMART CPU SR40 0\\nSiemens SIMATIC S7-200 SMART CPU SR40 0\\nSiemens SIMATIC S7-200 SMART CPU SR60 0\\nSiemens SIMATIC S7-200 SMART CPU SR60 0\\nSiemens SIMATIC S7-200 SMART CPU ST20 0\\nSiemens SIMATIC S7-200 SMART CPU ST20 0\\nSiemens SIMATIC S7-200 SMART CPU ST30 0\\nSiemens SIMATIC S7-200 SMART CPU ST30 0\\nSiemens SIMATIC S7-200 SMART CPU ST40 0\\nSiemens SIMATIC S7-200 SMART CPU ST40 0\\nSiemens SIMATIC S7-200 SMART CPU ST60 0\\nSiemens SIMATIC S7-200 SMART CPU ST60 0\\nSiemens SIMATIC S7-300 CPU 314C-2 PN\/DP 0\\nSiemens SIMATIC S7-300 CPU 315-2 PN\/DP 0\\nSiemens SIMATIC S7-300 CPU 315F-2 PN\/DP 0\\nSiemens SIMATIC S7-300 CPU 315T-3 PN\/DP 0\\nSiemens SIMATIC S7-300 CPU 317-2 PN\/DP 0\\nSiemens SIMATIC S7-300 CPU 317F-2 PN\/DP 0\\nSiemens SIMATIC S7-300 CPU 317T-3 PN\/DP 0\\nSiemens SIMATIC S7-300 CPU 317TF-3 PN\/DP 0\\nSiemens SIMATIC S7-300 CPU 319-3 PN\/DP 0\\nSiemens SIMATIC S7-300 CPU 319F-3 PN\/DP 0\\nSiemens SIMATIC S7-400 CPU 412-2 PN V7 0\\nSiemens SIMATIC S7-400 CPU 414-3 PN\/DP V7 0\\nSiemens SIMATIC S7-400 CPU 414F-3 PN\/DP V7 0\\nSiemens SIMATIC S7-400 CPU 416-3 PN\/DP V7 0\\nSiemens SIMATIC S7-400 CPU 416F-3 PN\/DP V7 0\\nSiemens SIMATIC S7-400 H V6 CPU family (incl. SIPLUS variants) 0\\nSiemens SIMATIC S7-410 V10 CPU family (incl. SIPLUS variants) 0\\nSiemens SIMATIC S7-410 V8 CPU family (incl. SIPLUS variants) 0\\nSiemens SIMATIC TDC CP51M1 0\\nSiemens SIMATIC TDC CPU555 0\\nSiemens SIMOCODE pro V Ethernet\/IP (incl. SIPLUS variants) 0\\nSiemens SIMOCODE pro V PROFINET 0\\nSiemens SINUMERIK 840D sl 0\\nSiemens SIPLUS ET 200MP IM 155-5 PN HF V4.2.0\\nSiemens SIPLUS ET 200MP IM 155-5 PN HF V4.2.0\\nSiemens SIPLUS ET 200MP IM 155-5 PN HF T1 RAIL V4.2.0\\nSiemens SIPLUS ET 200S IM 151-8 PN\/DP CPU 0\\nSiemens SIPLUS ET 200S IM 151-8F PN\/DP CPU 0\\nSiemens SIPLUS ET 200SP CPU 1512SP F-1 PN 0\\nSiemens SIPLUS ET 200SP IM 155-6 PN HF V4.2.0\\nSiemens SIPLUS ET 200SP IM 155-6 PN HF V4.2.0\\nSiemens SIPLUS ET 200SP IM 155-6 PN HF V4.2.0\\nSiemens SIPLUS ET 200SP IM 155-6 PN HF V4.2.0\\nSiemens SIPLUS ET 200SP IM 155-6 PN HF T1 RAIL V4.2.0\\nSiemens SIPLUS ET 200SP IM 155-6 PN HF T1 RAIL V4.2.0\\nSiemens SIPLUS ET 200SP IM 155-6 PN HF TX RAIL V4.2.0\\nSiemens SIPLUS HCS4200 CIM4210 0\\nSiemens SIPLUS HCS4200 CIM4210C 0\\nSiemens SIPLUS HCS4300 CIM4310 0\\nSiemens SIPLUS NET PN\/PN Coupler 0\\nSiemens SIPLUS S7-1200 CPU 1212 AC\/DC\/RLY 0\\nSiemens SIPLUS S7-1200 CPU 1212 DC\/DC\/RLY 0\\nSiemens SIPLUS S7-1200 CPU 1212 DC\/DC\/RLY 0\\nSiemens SIPLUS S7-1200 CPU 1212C AC\/DC\/RLY 0\\nSiemens SIPLUS S7-1200 CPU 1212C DC\/DC\/DC 0\\nSiemens SIPLUS S7-1200 CPU 1212C DC\/DC\/DC 0\\nSiemens SIPLUS S7-1200 CPU 1212C DC\/DC\/DC RAIL 0\\nSiemens SIPLUS S7-1200 CPU 1214 AC\/DC\/RLY 0\\nSiemens SIPLUS S7-1200 CPU 1214 DC\/DC\/RLY 0\\nSiemens SIPLUS S7-1200 CPU 1214C AC\/DC\/RLY 0\\nSiemens SIPLUS S7-1200 CPU 1214C AC\/DC\/RLY 0\\nSiemens SIPLUS S7-1200 CPU 1214C DC\/DC\/DC 0\\nSiemens SIPLUS S7-1200 CPU 1214C DC\/DC\/DC 0\\nSiemens SIPLUS S7-1200 CPU 1214C DC\/DC\/DC 0\\nSiemens SIPLUS S7-1200 CPU 1214C DC\/DC\/DC RAIL 0\\nSiemens SIPLUS S7-1200 CPU 1214C DC\/DC\/RLY 0\\nSiemens SIPLUS S7-1200 CPU 1214C DC\/DC\/RLY 0\\nSiemens SIPLUS S7-1200 CPU 1214FC DC\/DC\/DC 0\\nSiemens SIPLUS S7-1200 CPU 1214FC DC\/DC\/RLY 0\\nSiemens SIPLUS S7-1200 CPU 1215 AC\/DC\/RLY 0\\nSiemens SIPLUS S7-1200 CPU 1215 AC\/DC\/RLY 0\\nSiemens SIPLUS S7-1200 CPU 1215 DC\/DC\/DC 0\\nSiemens SIPLUS S7-1200 CPU 1215 DC\/DC\/DC 0\\nSiemens SIPLUS S7-1200 CPU 1215 DC\/DC\/RLY 0\\nSiemens SIPLUS S7-1200 CPU 1215 DC\/DC\/RLY 0\\nSiemens SIPLUS S7-1200 CPU 1215 DC\/DC\/RLY 0\\nSiemens SIPLUS S7-1200 CPU 1215C AC\/DC\/RLY 0\\nSiemens SIPLUS S7-1200 CPU 1215C DC\/DC\/DC 0\\nSiemens SIPLUS S7-1200 CPU 1215FC DC\/DC\/DC 0\\nSiemens SIPLUS S7-1500 CPU 1511-1 PN 0\\nSiemens SIPLUS S7-1500 CPU 1511F-1 PN 0\\nSiemens SIPLUS S7-1500 CPU 1513-1 PN 0\\nSiemens SIPLUS S7-1500 CPU 1513F-1 PN 0\\nSiemens SIPLUS S7-1500 CPU 1516-3 PN\/DP 0\\nSiemens SIPLUS S7-1500 CPU 1516-3 PN\/DP 0\\nSiemens SIPLUS S7-1500 CPU 1516F-3 PN\/DP 0\\nSiemens SIPLUS S7-300 CPU 314C-2 PN\/DP 0\\nSiemens SIPLUS S7-300 CPU 315-2 PN\/DP 0\\nSiemens SIPLUS S7-300 CPU 315F-2 PN\/DP 0\\nSiemens SIPLUS S7-300 CPU 317-2 PN\/DP 0\\nSiemens SIPLUS S7-300 CPU 317F-2 PN\/DP 0\\nSiemens SIPLUS S7-400 CPU 414-3 PN\/DP V7 0\\nSiemens SIPLUS S7-400 CPU 416-3 PN\/DP V7 0\\nSiemens SIWAREX WP231 0\\nSiemens SIWAREX WP241 0\\nSiemens SIWAREX WP251 0\\nSiemens SIWAREX WP521 ST 0\\nSiemens SIWAREX WP522 ST 0″,”sourceHref”:””,”cvss”:{“score”:7.5,”severity”:”HIGH”,”vector”:”CVSS:3.1\/AV:N\/AC:L\/PR:N\/UI:N\/S:U\/C:N\/I:N\/A:H”,”version”:”3.1″},”cvss2″:{},”cvss3″:{“version”:””,”vectorString”:””,”baseScore”:0,”baseSeverity”:””,”attackVector”:””,”attackComplexity”:””,”privilegesRequired”:””,”userInteraction”:””,”scope”:””,”confidentialityImpact”:””,”integrityImpact”:””,”availabilityImpact”:””,”cvssV3″:{“version”:””,”vectorString”:””,”baseScore”:0,”baseSeverity”:””,”attackVector”:””,”attackComplexity”:””,”privilegesRequired”:””,”userInteraction”:””,”scope”:””,”confidentialityImpact”:””,”integrityImpact”:””,”availabilityImpact”:””}},”href”:””,”category_name”:”CVE”,”post_link”:””,”product”:”SIDOOR ATD430W”,”version”:”0″,”vendor”:”Siemens”,”ai_description”:””,”ai_severity”:””,”ai_vendor”:””,”ai_product”:””,”ai_version”:””,”ai_score”:0}<\/p>\n","protected":false},"excerpt":{"rendered":"
{“lastseen”:””,”description”:”Affected products do not properly enforce TCP sequence number validation in specific scenarios but accept values within a broad range. This could allow an unauthenticated…<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[2],"tags":[6,8,16,12,15,13,7,11,5],"class_list":["post-29577","post","type-post","status-publish","format-standard","hentry","category-category_cve","tag-cve","tag-cvss","tag-cvss-75","tag-exploit","tag-high","tag-news","tag-security","tag-tapic","tag-vulnerability"],"yoast_head":"\n