CVE-2025-40946
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:H
Summary
A vulnerability has been identified in blueplanet 100 NX3 M8 (All versions), blueplanet 100 TL3 GEN2 (All versions < V6.1.4.9), blueplanet 105 TL3 (All versions), blueplanet 105 TL3 GEN2 (All versions < V6.1.4.9), blueplanet 110 TL3 (All versions), blueplanet 125 NX3 M10 (All versions), blueplanet 125 TL3 (All versions), blueplanet 125 TL3 GEN2 (All versions < V6.1.4.9), blueplanet 137 TL3 (All versions), blueplanet 150 TL3 (All versions), blueplanet 150 TL3 GEN2 (All versions < V6.1.4.9), blueplanet 155 TL3 (All versions), blueplanet 155 TL3 GEN2 (All versions < V6.1.4.9), blueplanet 165 TL3 (All versions), blueplanet 165 TL3 GEN2 (All versions < V6.1.4.9), blueplanet 25.0 NX3-33.0 NX3 (All versions), blueplanet 3.0 NX3-20.0 NX3 (All versions), blueplanet 3.0 TL3-60.0 TL3 (All versions), blueplanet 3.0-5.0 NX1 (All versions), blueplanet 360 NX3 M6 (All versions), blueplanet 50.0 NX3-60.0 NX3 (All versions), blueplanet 87.0 TL3 (All versions), blueplanet 87.0 TL3 GEN2 (All versions < V6.1.4.9), blueplanet 92.0 TL3 (All versions), blueplanet 92.0 TL3 GEN2 (All versions < V6.1.4.9), blueplanet gridsave 110 TL3-S (All versions < V3.91), blueplanet gridsave 137 TL3-S (All versions < V3.91), blueplanet gridsave 92.0 TL3-S (All versions < V3.91), blueplanet hybrid 10.0 TL3 (All versions), blueplanet hybrid 6.0 NH3-12.0 NH3 (All versions). A CRC16-based algorithm for generating Technical Service credentials could allow an attacker to derive the credentials from the devices serial number and misuse them to gain unauthorized access.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Siemens | blueplanet 100 NX3 M8 | 0 < * | affected |
| Siemens | blueplanet 100 TL3 GEN2 | 0 < V6.1.4.9 | affected |
| Siemens | blueplanet 105 TL3 | 0 < * | affected |
| Siemens | blueplanet 105 TL3 GEN2 | 0 < V6.1.4.9 | affected |
| Siemens | blueplanet 110 TL3 | 0 < * | affected |
| Siemens | blueplanet 125 NX3 M10 | 0 < * | affected |
| Siemens | blueplanet 125 TL3 | 0 < * | affected |
| Siemens | blueplanet 125 TL3 GEN2 | 0 < V6.1.4.9 | affected |
| Siemens | blueplanet 137 TL3 | 0 < * | affected |
| Siemens | blueplanet 150 TL3 | 0 < * | affected |
| Siemens | blueplanet 150 TL3 GEN2 | 0 < V6.1.4.9 | affected |
| Siemens | blueplanet 155 TL3 | 0 < * | affected |
| Siemens | blueplanet 155 TL3 GEN2 | 0 < V6.1.4.9 | affected |
| Siemens | blueplanet 165 TL3 | 0 < * | affected |
| Siemens | blueplanet 165 TL3 GEN2 | 0 < V6.1.4.9 | affected |
| Siemens | blueplanet 25.0 NX3-33.0 NX3 | 0 < * | unaffected |
| Siemens | blueplanet 3.0 NX3-20.0 NX3 | 0 < * | unaffected |
| Siemens | blueplanet 3.0 TL3-60.0 TL3 | 0 < * | affected |
| Siemens | blueplanet 3.0-5.0 NX1 | 0 < * | unaffected |
| Siemens | blueplanet 360 NX3 M6 | 0 < * | unaffected |
| Siemens | blueplanet 50.0 NX3-60.0 NX3 | 0 < * | unaffected |
| Siemens | blueplanet 87.0 TL3 | 0 < * | affected |
| Siemens | blueplanet 87.0 TL3 GEN2 | 0 < V6.1.4.9 | affected |
| Siemens | blueplanet 92.0 TL3 | 0 < * | affected |
| Siemens | blueplanet 92.0 TL3 GEN2 | 0 < V6.1.4.9 | affected |
| Siemens | blueplanet gridsave 110 TL3-S | 0 < V3.91 | affected |
| Siemens | blueplanet gridsave 137 TL3-S | 0 < V3.91 | affected |
| Siemens | blueplanet gridsave 92.0 TL3-S | 0 < V3.91 | affected |
| Siemens | blueplanet hybrid 10.0 TL3 | 0 < * | unaffected |
| Siemens | blueplanet hybrid 6.0 NH3-12.0 NH3 | 0 < * | unaffected |
Weaknesses
- CWE-321: CWE-321: Use of Hard-coded Cryptographic Key
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: total
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.