SecuriTricks - CVE-2025-40569

Description

A vulnerability has been identified in RUGGEDCOM RST2428P (6GK6242-6PA00) (All versions < V3.2), SCALANCE XC316-8 (6GK5324-8TS00-2AC2) (All versions < V3.2), SCALANCE XC324-4 (6GK5328-4TS00-2AC2) (All versions < V3.2), SCALANCE XC324-4 EEC (6GK5328-4TS00-2EC2) (All versions < V3.2), SCALANCE XC332 (6GK5332-0GA00-2AC2) (All versions < V3.2), SCALANCE XC416-8 (6GK5424-8TR00-2AC2) (All versions < V3.2), SCALANCE XC424-4 (6GK5428-4TR00-2AC2) (All versions < V3.2), SCALANCE XC432 (6GK5432-0GR00-2AC2) (All versions < V3.2), SCALANCE XCH328 (6GK5328-4TS01-2EC2) (All versions < V3.2), SCALANCE XCM324 (6GK5324-8TS01-2AC2) (All versions < V3.2), SCALANCE XCM328 (6GK5328-4TS01-2AC2) (All versions < V3.2), SCALANCE XCM332 (6GK5332-0GA01-2AC2) (All versions < V3.2), SCALANCE XR302-32 (6GK5334-5TS00-2AR3) (All versions < V3.2), SCALANCE XR302-32 (6GK5334-5TS00-3AR3) (All versions < V3.2), SCALANCE XR302-32 (6GK5334-5TS00-4AR3) (All versions < V3.2), SCALANCE XR322-12 (6GK5334-3TS00-2AR3) (All versions < V3.2), SCALANCE XR322-12 (6GK5334-3TS00-3AR3) (All versions < V3.2), SCALANCE XR322-12 (6GK5334-3TS00-4AR3) (All versions < V3.2), SCALANCE XR326-8 (6GK5334-2TS00-2AR3) (All versions < V3.2), SCALANCE XR326-8 (6GK5334-2TS00-3AR3) (All versions < V3.2), SCALANCE XR326-8 (6GK5334-2TS00-4AR3) (All versions < V3.2), SCALANCE XR326-8 EEC (6GK5334-2TS00-2ER3) (All versions < V3.2), SCALANCE XR502-32 (6GK5534-5TR00-2AR3) (All versions < V3.2), SCALANCE XR502-32 (6GK5534-5TR00-3AR3) (All versions < V3.2), SCALANCE XR502-32 (6GK5534-5TR00-4AR3) (All versions < V3.2), SCALANCE XR522-12 (6GK5534-3TR00-2AR3) (All versions < V3.2), SCALANCE XR522-12 (6GK5534-3TR00-3AR3) (All versions < V3.2), SCALANCE XR522-12 (6GK5534-3TR00-4AR3) (All versions < V3.2), SCALANCE XR526-8 (6GK5534-2TR00-2AR3) (All versions < V3.2), SCALANCE XR526-8 (6GK5534-2TR00-3AR3) (All versions < V3.2), SCALANCE XR526-8 (6GK5534-2TR00-4AR3) (All versions < V3.2), SCALANCE XRH334 (24 V DC, 8xFO, CC) (6GK5334-2TS01-2ER3) (All versions < V3.2), SCALANCE XRM334 (230 V AC, 12xFO) (6GK5334-3TS01-3AR3) (All versions < V3.2), SCALANCE XRM334 (230 V AC, 8xFO) (6GK5334-2TS01-3AR3) (All versions < V3.2), SCALANCE XRM334 (230V AC, 2x10G, 24xSFP, 8xSFP+) (6GK5334-5TS01-3AR3) (All versions < V3.2), SCALANCE XRM334 (24 V DC, 12xFO) (6GK5334-3TS01-2AR3) (All versions < V3.2), SCALANCE XRM334 (24 V DC, 8xFO) (6GK5334-2TS01-2AR3) (All versions < V3.2), SCALANCE XRM334 (24V DC, 2x10G, 24xSFP, 8xSFP+) (6GK5334-5TS01-2AR3) (All versions < V3.2), SCALANCE XRM334 (2x230 V AC, 12xFO) (6GK5334-3TS01-4AR3) (All versions < V3.2), SCALANCE XRM334 (2x230 V AC, 8xFO) (6GK5334-2TS01-4AR3) (All versions < V3.2), SCALANCE XRM334 (2x230V AC, 2x10G, 24xSFP, 8xSFP+) (6GK5334-5TS01-4AR3) (All versions < V3.2). The "Load Configuration from Local PC" functionality in the web interface of affected products contains a race condition vulnerability. This could allow an authenticated remote attacker to make the affected product load an attacker controlled configuration instead of the legitimate one. Successful exploitation requires that a legitimate administrator invokes the functionality and the attacker wins the race condition.

Product(s) Impacted

Vendor	Product	Versions
Siemens	Ruggedcom Rst2428p Scalance Xc316-8 Scalance Xc324-4 Scalance Xc324-4 Eec Scalance Xc332 Scalance Xc416-8 Scalance Xc424-4 Scalance Xc432 Scalance Xch328 Scalance Xcm324 Scalance Xcm328 Scalance Xcm332 Scalance Xr302-32 Scalance Xr322-12 Scalance Xr326-8 Scalance Xr502-32 Scalance Xr522-12 Scalance Xr526-8 Scalance Xrh334 Scalance Xrm334	<3.2 <3.2 <3.2 <3.2 <3.2 <3.2 <3.2 <3.2 <3.2 <3.2 <3.2 <3.2 <3.2 <3.2 <3.2 <3.2 <3.2 <3.2 <3.2 <3.2

Weaknesses

Common security weaknesses mapped to this vulnerability.

CWE-362

Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

The product contains a code sequence that can run concurrently with other code, and the code sequence requires temporary, exclusive access to a shared resource, but a timing window exists in which the shared resource can be modified by another code sequence that is operating concurrently.

*CPE(s)

Affected systems and software identified for this CVE.

Type	Vendor	Product	Version	Update	Edition	Language	Software Edition	Target Software	Target Hardware	Other Information
a	siemens	ruggedcom_rst2428p	<3.2	/	/	/	/	/	/	/
a	siemens	scalance_xc316-8	<3.2	/	/	/	/	/	/	/
a	siemens	scalance_xc324-4	<3.2	/	/	/	/	/	/	/
a	siemens	scalance_xc324-4_eec	<3.2	/	/	/	/	/	/	/
a	siemens	scalance_xc332	<3.2	/	/	/	/	/	/	/
a	siemens	scalance_xc416-8	<3.2	/	/	/	/	/	/	/
a	siemens	scalance_xc424-4	<3.2	/	/	/	/	/	/	/
a	siemens	scalance_xc432	<3.2	/	/	/	/	/	/	/
a	siemens	scalance_xch328	<3.2	/	/	/	/	/	/	/
a	siemens	scalance_xcm324	<3.2	/	/	/	/	/	/	/
a	siemens	scalance_xcm328	<3.2	/	/	/	/	/	/	/
a	siemens	scalance_xcm332	<3.2	/	/	/	/	/	/	/
a	siemens	scalance_xr302-32	<3.2	/	/	/	/	/	/	/
a	siemens	scalance_xr322-12	<3.2	/	/	/	/	/	/	/
a	siemens	scalance_xr326-8	<3.2	/	/	/	/	/	/	/
a	siemens	scalance_xr502-32	<3.2	/	/	/	/	/	/	/
a	siemens	scalance_xr522-12	<3.2	/	/	/	/	/	/	/
a	siemens	scalance_xr526-8	<3.2	/	/	/	/	/	/	/
a	siemens	scalance_xrh334	<3.2	/	/	/	/	/	/	/
a	siemens	scalance_xrm334	<3.2	/	/	/	/	/	/	/

References

https://cert-portal.siemens.com/productcert/html/ssa-693776.html

CVSS Score

5.9 / 10

CVSS Data - 4.0

Attack Vector: NETWORK
Attack Complexity: LOW
Attack Requirements: PRESENT
Privileges Required: LOW
User Interaction: PASSIVE
Scope:
Confidentiality Impact: NONE
Integrity Impact: HIGH
Availability Impact: NONE
Exploit Maturity: NOT_DEFINED

CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:P/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

View Vector String

Timeline

Published: June 10, 2025, 4:15 p.m.
Last Modified: June 10, 2025, 4:15 p.m.

Status : Received

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

productcert@siemens.com

CVE-2025-40569