{“lastseen”:””,”description”:”Affected devices do not properly validate and sanitize PLC\/station name rendered on the \\”communication\\” parameters page of the web interface.\\r\\nThis could allow an authenticated attacker who is authorized to download a TIA project into the product, to inject malicious scripts into the page.\\r\\nIf a benign user with appropriate rights accesses the \\”communication\\” parameters page, the malicious code would be executed in the scope of their web session.”,”published”:”2026-05-12T08:20:58.605Z”,”modified”:”2026-05-12T08:20:58.605Z”,”type”:”cve”,”title”:”CVE-2026-25786″,”source”:”siemens”,”references”:”https:\/\/cert-portal.siemens.com\/productcert\/html\/ssa-688146.html”,”id”:”CVE-2026-25786″,”bulletinFamily”:””,”cwe”:[“CWE-79″],”cvelist”:null,”sourceData”:”Siemens SIMATIC Drive Controller CPU 1504D TF 0\\nSiemens SIMATIC Drive Controller CPU 1507D TF 0\\nSiemens SIMATIC ET 200SP CPU 1510SP F-1 PN 0\\nSiemens SIMATIC ET 200SP CPU 1510SP F-1 PN 0\\nSiemens SIMATIC ET 200SP CPU 1510SP F-1 PN 0\\nSiemens SIMATIC ET 200SP CPU 1510SP-1 PN 0\\nSiemens SIMATIC ET 200SP CPU 1510SP-1 PN 0\\nSiemens SIMATIC ET 200SP CPU 1510SP-1 PN 0\\nSiemens SIMATIC ET 200SP CPU 1512SP F-1 PN 0\\nSiemens SIMATIC ET 200SP CPU 1512SP F-1 PN 0\\nSiemens SIMATIC ET 200SP CPU 1512SP F-1 PN 0\\nSiemens SIMATIC ET 200SP CPU 1512SP-1 PN 0\\nSiemens SIMATIC ET 200SP CPU 1512SP-1 PN 0\\nSiemens SIMATIC ET 200SP CPU 1512SP-1 PN 0\\nSiemens SIMATIC ET 200SP CPU 1514SP F-2 PN 0\\nSiemens SIMATIC ET 200SP CPU 1514SP-2 PN 0\\nSiemens SIMATIC ET 200SP CPU 1514SPT F-2 PN 0\\nSiemens SIMATIC ET 200SP CPU 1514SPT-2 PN 0\\nSiemens SIMATIC ET 200SP Open Controller CPU 1515SP PC (incl. SIPLUS variants) 0\\nSiemens SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V2 CPUs 0\\nSiemens SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V3 CPUs 0\\nSiemens SIMATIC ET 200SP Open Controller CPU 1515SP PC3 V4 CPUs 0\\nSiemens SIMATIC S7-1500 CPU 1511-1 PN 0\\nSiemens SIMATIC S7-1500 CPU 1511-1 PN 0\\nSiemens SIMATIC S7-1500 CPU 1511-1 PN 0\\nSiemens SIMATIC S7-1500 CPU 1511-1 PN 0\\nSiemens SIMATIC S7-1500 CPU 1511C-1 PN 0\\nSiemens SIMATIC S7-1500 CPU 1511C-1 PN 0\\nSiemens SIMATIC S7-1500 CPU 1511C-1 PN 0\\nSiemens SIMATIC S7-1500 CPU 1511F-1 PN 0\\nSiemens SIMATIC S7-1500 CPU 1511F-1 PN 0\\nSiemens SIMATIC S7-1500 CPU 1511F-1 PN 0\\nSiemens SIMATIC S7-1500 CPU 1511F-1 PN 0\\nSiemens SIMATIC S7-1500 CPU 1511T-1 PN 0\\nSiemens SIMATIC S7-1500 CPU 1511T-1 PN 0\\nSiemens SIMATIC S7-1500 CPU 1511TF-1 PN 0\\nSiemens SIMATIC S7-1500 CPU 1511TF-1 PN 0\\nSiemens SIMATIC S7-1500 CPU 1512C-1 PN 0\\nSiemens SIMATIC S7-1500 CPU 1512C-1 PN 0\\nSiemens SIMATIC S7-1500 CPU 1512C-1 PN 0\\nSiemens SIMATIC S7-1500 CPU 1513-1 PN 0\\nSiemens SIMATIC S7-1500 CPU 1513-1 PN 0\\nSiemens SIMATIC S7-1500 CPU 1513-1 PN 0\\nSiemens SIMATIC S7-1500 CPU 1513-1 PN 0\\nSiemens SIMATIC S7-1500 CPU 1513F-1 PN 0\\nSiemens SIMATIC S7-1500 CPU 1513F-1 PN 0\\nSiemens SIMATIC S7-1500 CPU 1513F-1 PN 0\\nSiemens SIMATIC S7-1500 CPU 1513F-1 PN 0\\nSiemens SIMATIC S7-1500 CPU 1513pro F-2 PN 0\\nSiemens SIMATIC S7-1500 CPU 1513pro-2 PN 0\\nSiemens SIMATIC S7-1500 CPU 1515-2 PN 0\\nSiemens SIMATIC S7-1500 CPU 1515-2 PN 0\\nSiemens SIMATIC S7-1500 CPU 1515-2 PN 0\\nSiemens SIMATIC S7-1500 CPU 1515-2 PN 0\\nSiemens SIMATIC S7-1500 CPU 1515F-2 PN 0\\nSiemens SIMATIC S7-1500 CPU 1515F-2 PN 0\\nSiemens SIMATIC S7-1500 CPU 1515F-2 PN 0\\nSiemens SIMATIC S7-1500 CPU 1515F-2 PN 0\\nSiemens SIMATIC S7-1500 CPU 1515T-2 PN 0\\nSiemens SIMATIC S7-1500 CPU 1515T-2 PN 0\\nSiemens SIMATIC S7-1500 CPU 1515TF-2 PN 0\\nSiemens SIMATIC S7-1500 CPU 1515TF-2 PN 0\\nSiemens SIMATIC S7-1500 CPU 1516-3 PN\/DP 0\\nSiemens SIMATIC S7-1500 CPU 1516-3 PN\/DP 0\\nSiemens SIMATIC S7-1500 CPU 1516-3 PN\/DP 0\\nSiemens SIMATIC S7-1500 CPU 1516-3 PN\/DP 0\\nSiemens SIMATIC S7-1500 CPU 1516F-3 PN\/DP 0\\nSiemens SIMATIC S7-1500 CPU 1516F-3 PN\/DP 0\\nSiemens SIMATIC S7-1500 CPU 1516F-3 PN\/DP 0\\nSiemens SIMATIC S7-1500 CPU 1516F-3 PN\/DP 0\\nSiemens SIMATIC S7-1500 CPU 1516pro F-2 PN 0\\nSiemens SIMATIC S7-1500 CPU 1516pro-2 PN 0\\nSiemens SIMATIC S7-1500 CPU 1516T-3 PN 0\\nSiemens SIMATIC S7-1500 CPU 1516T-3 PN\/DP 0\\nSiemens SIMATIC S7-1500 CPU 1516TF-3 PN 0\\nSiemens SIMATIC S7-1500 CPU 1516TF-3 PN\/DP 0\\nSiemens SIMATIC S7-1500 CPU 1517-3 PN 0\\nSiemens SIMATIC S7-1500 CPU 1517-3 PN\/DP 0\\nSiemens SIMATIC S7-1500 CPU 1517F-3 PN 0\\nSiemens SIMATIC S7-1500 CPU 1517F-3 PN\/DP 0\\nSiemens SIMATIC S7-1500 CPU 1517F-3 PN\/DP 0\\nSiemens SIMATIC S7-1500 CPU 1517T-3 PN 0\\nSiemens SIMATIC S7-1500 CPU 1517T-3 PN\/DP 0\\nSiemens SIMATIC S7-1500 CPU 1517TF-3 PN 0\\nSiemens SIMATIC S7-1500 CPU 1517TF-3 PN\/DP 0\\nSiemens SIMATIC S7-1500 CPU 1518-3 PN 0\\nSiemens SIMATIC S7-1500 CPU 1518-4 PN\/DP 0\\nSiemens SIMATIC S7-1500 CPU 1518-4 PN\/DP MFP 0\\nSiemens SIMATIC S7-1500 CPU 1518-4 PN\/DP MFP 0\\nSiemens SIMATIC S7-1500 CPU 1518F-3 PN 0\\nSiemens SIMATIC S7-1500 CPU 1518F-4 PN\/DP 0\\nSiemens SIMATIC S7-1500 CPU 1518F-4 PN\/DP MFP 0\\nSiemens SIMATIC S7-1500 CPU 1518F-4 PN\/DP MFP 0\\nSiemens SIMATIC S7-1500 CPU 1518T-3 PN 0\\nSiemens SIMATIC S7-1500 CPU 1518T-4 PN\/DP 0\\nSiemens SIMATIC S7-1500 CPU 1518TF-3 PN 0\\nSiemens SIMATIC S7-1500 CPU 1518TF-4 PN\/DP 0\\nSiemens SIMATIC S7-1500 CPU S7-1518-4 PN\/DP ODK 0\\nSiemens SIMATIC S7-1500 CPU S7-1518F-4 PN\/DP ODK 0\\nSiemens SIMATIC S7-1500 ET 200pro: CPU 1513PRO F-2 PN 0\\nSiemens SIMATIC S7-1500 ET 200pro: CPU 1513PRO-2 PN 0\\nSiemens SIMATIC S7-1500 ET 200pro: CPU 1516PRO F-2 PN 0\\nSiemens SIMATIC S7-1500 ET 200pro: CPU 1516PRO-2 PN 0\\nSiemens SIMATIC S7-1500 Software Controller CPU 1507S F V2 0\\nSiemens SIMATIC S7-1500 Software Controller CPU 1507S F V3 0\\nSiemens SIMATIC S7-1500 Software Controller CPU 1507S F V4 0\\nSiemens SIMATIC S7-1500 Software Controller CPU 1507S V2 0\\nSiemens SIMATIC S7-1500 Software Controller CPU 1507S V3 0\\nSiemens SIMATIC S7-1500 Software Controller CPU 1507S V4 0\\nSiemens SIMATIC S7-1500 Software Controller CPU 1508S F V2 0\\nSiemens SIMATIC S7-1500 Software Controller CPU 1508S F V3 0\\nSiemens SIMATIC S7-1500 Software Controller CPU 1508S F V4 0\\nSiemens SIMATIC S7-1500 Software Controller CPU 1508S T V3 0\\nSiemens SIMATIC S7-1500 Software Controller CPU 1508S TF V3 0\\nSiemens SIMATIC S7-1500 Software Controller CPU 1508S V2 0\\nSiemens SIMATIC S7-1500 Software Controller CPU 1508S V3 0\\nSiemens SIMATIC S7-1500 Software Controller CPU 1508S V4 0\\nSiemens SIMATIC S7-1500 Software Controller Linux V2 0\\nSiemens SIMATIC S7-1500 Software Controller Linux V3 0\\nSiemens SIMATIC S7-PLCSIM Advanced 0\\nSiemens SIPLUS ET 200SP CPU 1510SP F-1 PN 0\\nSiemens SIPLUS ET 200SP CPU 1510SP F-1 PN RAIL 0\\nSiemens SIPLUS ET 200SP CPU 1510SP-1 PN 0\\nSiemens SIPLUS ET 200SP CPU 1510SP-1 PN 0\\nSiemens SIPLUS ET 200SP CPU 1510SP-1 PN RAIL 0\\nSiemens SIPLUS ET 200SP CPU 1510SP-1 PN RAIL 0\\nSiemens SIPLUS ET 200SP CPU 1512SP F-1 PN 0\\nSiemens SIPLUS ET 200SP CPU 1512SP F-1 PN 0\\nSiemens SIPLUS ET 200SP CPU 1512SP F-1 PN 0\\nSiemens SIPLUS ET 200SP CPU 1512SP F-1 PN RAIL 0\\nSiemens SIPLUS ET 200SP CPU 1512SP F-1 PN RAIL 0\\nSiemens SIPLUS ET 200SP CPU 1512SP-1 PN 0\\nSiemens SIPLUS ET 200SP CPU 1512SP-1 PN 0\\nSiemens SIPLUS ET 200SP CPU 1512SP-1 PN RAIL 0\\nSiemens SIPLUS ET 200SP CPU 1512SP-1 PN RAIL 0\\nSiemens SIPLUS S7-1500 CPU 1511-1 PN 0\\nSiemens SIPLUS S7-1500 CPU 1511-1 PN 0\\nSiemens SIPLUS S7-1500 CPU 1511-1 PN 0\\nSiemens SIPLUS S7-1500 CPU 1511-1 PN 0\\nSiemens SIPLUS S7-1500 CPU 1511-1 PN 0\\nSiemens SIPLUS S7-1500 CPU 1511-1 PN T1 RAIL 0\\nSiemens SIPLUS S7-1500 CPU 1511-1 PN T1 RAIL 0\\nSiemens SIPLUS S7-1500 CPU 1511-1 PN TX RAIL 0\\nSiemens SIPLUS S7-1500 CPU 1511-1 PN TX RAIL 0\\nSiemens SIPLUS S7-1500 CPU 1511F-1 PN 0\\nSiemens SIPLUS S7-1500 CPU 1511F-1 PN 0\\nSiemens SIPLUS S7-1500 CPU 1511F-1 PN 0\\nSiemens SIPLUS S7-1500 CPU 1513-1 PN 0\\nSiemens SIPLUS S7-1500 CPU 1513-1 PN 0\\nSiemens SIPLUS S7-1500 CPU 1513-1 PN 0\\nSiemens SIPLUS S7-1500 CPU 1513-1 PN 0\\nSiemens SIPLUS S7-1500 CPU 1513-1 PN 0\\nSiemens SIPLUS S7-1500 CPU 1513F-1 PN 0\\nSiemens SIPLUS S7-1500 CPU 1513F-1 PN 0\\nSiemens SIPLUS S7-1500 CPU 1513F-1 PN 0\\nSiemens SIPLUS S7-1500 CPU 1515F-2 PN 0\\nSiemens SIPLUS S7-1500 CPU 1515F-2 PN 0\\nSiemens SIPLUS S7-1500 CPU 1515F-2 PN RAIL 0\\nSiemens SIPLUS S7-1500 CPU 1515F-2 PN T2 RAIL 0\\nSiemens SIPLUS S7-1500 CPU 1516-3 PN\/DP 0\\nSiemens SIPLUS S7-1500 CPU 1516-3 PN\/DP 0\\nSiemens SIPLUS S7-1500 CPU 1516-3 PN\/DP 0\\nSiemens SIPLUS S7-1500 CPU 1516-3 PN\/DP 0\\nSiemens SIPLUS S7-1500 CPU 1516-3 PN\/DP 0\\nSiemens SIPLUS S7-1500 CPU 1516-3 PN\/DP 0\\nSiemens SIPLUS S7-1500 CPU 1516-3 PN\/DP RAIL 0\\nSiemens SIPLUS S7-1500 CPU 1516-3 PN\/DP TX RAIL 0\\nSiemens SIPLUS S7-1500 CPU 1516F-3 PN\/DP 0\\nSiemens SIPLUS S7-1500 CPU 1516F-3 PN\/DP 0\\nSiemens SIPLUS S7-1500 CPU 1516F-3 PN\/DP 0\\nSiemens SIPLUS S7-1500 CPU 1516F-3 PN\/DP RAIL 0\\nSiemens SIPLUS S7-1500 CPU 1516F-3 PN\/DP RAIL 0\\nSiemens SIPLUS S7-1500 CPU 1518-4 PN\/DP 0\\nSiemens SIPLUS S7-1500 CPU 1518-4 PN\/DP MFP 0\\nSiemens SIPLUS S7-1500 CPU 1518F-4 PN\/DP 0″,”sourceHref”:””,”cvss”:{“score”:9.1,”severity”:”CRITICAL”,”vector”:”CVSS:3.1\/AV:N\/AC:L\/PR:H\/UI:N\/S:C\/C:H\/I:H\/A:H”,”version”:”3.1″},”cvss2″:{},”cvss3″:{“version”:””,”vectorString”:””,”baseScore”:0,”baseSeverity”:””,”attackVector”:””,”attackComplexity”:””,”privilegesRequired”:””,”userInteraction”:””,”scope”:””,”confidentialityImpact”:””,”integrityImpact”:””,”availabilityImpact”:””,”cvssV3″:{“version”:””,”vectorString”:””,”baseScore”:0,”baseSeverity”:””,”attackVector”:””,”attackComplexity”:””,”privilegesRequired”:””,”userInteraction”:””,”scope”:””,”confidentialityImpact”:””,”integrityImpact”:””,”availabilityImpact”:””}},”href”:””,”category_name”:”CVE”,”post_link”:””,”product”:”SIMATIC Drive Controller CPU 1504D TF”,”version”:”0″,”vendor”:”Siemens”,”ai_description”:”AI processing failed – no valid JSON found”,”ai_severity”:””,”ai_vendor”:””,”ai_product”:””,”ai_version”:””,”ai_score”:0}<\/p>\n","protected":false},"excerpt":{"rendered":"
{“lastseen”:””,”description”:”Affected devices do not properly validate and sanitize PLC\/station name rendered on the \\”communication\\” parameters page of the web interface.\\r\\nThis could allow an authenticated attacker…<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[2],"tags":[9,6,8,10,12,13,7,11,5],"class_list":["post-53289","post","type-post","status-publish","format-standard","hentry","category-category_cve","tag-critical","tag-cve","tag-cvss","tag-cvss-91","tag-exploit","tag-news","tag-security","tag-tapic","tag-vulnerability"],"yoast_head":"\n