CVE-2025-40581 – Siemens SCALANCE LPE9403 Authentication Bypass Vulnerability

May 13, 2025

CVE ID : CVE-2025-40581

Published : May 13, 2025, 10:15 a.m. | 1 hour, 52 minutes ago

Description : A vulnerability has been identified in SCALANCE LPE9403 (6GK5998-3GS00-2AC2) (All versions with SINEMA Remote Connect Edge Client installed). Affected devices are vulnerable to an authentication bypass.
This could allow a non-privileged local attacker to bypass the authentication of the SINEMA Remote Connect Edge Client, and to read and modify the configuration parameters.

Severity: 7.1 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-40580 – Siemens SCALANCE LPE9403 Stack-Based Buffer Overflow Vulnerability

Next Article CVE-2025-40575 – SCALANCE LPE9403 Remote Denial of Service (DoS) Vulnerability

How AI further empowers value stream management

12 Top ReactJS Development Companies in 2025

Not sure where to go with AI? Here’s your roadmap.

This week in AI dev tools: A2A donated to Linux Foundation, OpenAI adds Deep Research to API, and more (June 27, 2025)

Capcom’s finally giving Street Fighter 6 players the outfits they’ve wanted — when all else fails, send in swimsuits

After 14 years, Monster Hunter Wilds is bringing back underwater combat alongside “Lagiacrus” and another familiar monster — the impossible has happened

OpenAI may prematurely declare AGI to cut ties with Microsoft — despite Sam Altman admitting today’s tech isn’t built for it

Forget YouTube’s ad blocker war — this Google AI Overviews clone might finally sell me on the $14/month Premium subscription

Say hello to ECMAScript 2025

Say hello to ECMAScript 2025

Ecma International approves ECMAScript 2025: What’s new?

Building Together: PRFT Colleagues Volunteer with Atlanta Habitat for Humanity

Capcom’s finally giving Street Fighter 6 players the outfits they’ve wanted — when all else fails, send in swimsuits

Capcom’s finally giving Street Fighter 6 players the outfits they’ve wanted — when all else fails, send in swimsuits

After 14 years, Monster Hunter Wilds is bringing back underwater combat alongside “Lagiacrus” and another familiar monster — the impossible has happened

OpenAI may prematurely declare AGI to cut ties with Microsoft — despite Sam Altman admitting today’s tech isn’t built for it

CVE-2025-40581 – Siemens SCALANCE LPE9403 Authentication Bypass Vulnerability

Qilin Ransomware Attack on NHS Causes Patient Death in the UK

CVE-2025-6817 – HDF5 Resource Consumption Denial of Service

A Code Implementation to Use Ollama through Google Colab and Building a Local RAG Pipeline on Using DeepSeek-R1 1.5B through Ollama, LangChain, FAISS, and ChromaDB for Q&A

ChatGPT’s GPT-4 model retires soon – some users can continue to access it

Meet VoltAgent: A TypeScript AI Framework for Building and Orchestrating Scalable AI Agents

Radware Cloud WAF Vulnerable to Filter Bypass via Crafted Requests

CVE-2025-32926 – ThemeGoods Grand Restaurant WordPress Path Traversal Vulnerability

CISA Flags Active Exploits in Erlang/OTP SSH and Roundcube Webmail: Critical RCE and XSS Flaws Under Attack

How to Sandbox Linux Apps with Firejail and Bubblewrap

CVE-2025-4774 – Elementor Premium Addons Stored Cross-Site Scripting Vulnerability

CVE-2025-40581 – Siemens SCALANCE LPE9403 Authentication Bypass Vulnerability

Related Posts