What is CVE-2025-40570?

CVE-2025-40570 is a low-severity vulnerability in Siemens Siprotec 5 6md84 (Cp300), classified under Allocation of Resources Without Limits or Throttling. CVSS score: 2.4/10. Published 2025-08-12.

How severe is CVE-2025-40570?

Low severity. CVSS v3 base score is 2.4 out of 10.

Resource exhaustion in Siemens Siprotec 5 6md84 (Cp300)

CVE-2025-40570

A vulnerability has been identified in SIPROTEC 5 6MD84 (CP300) (All versions < V10.0), SIPROTEC 5 6MD85 (CP300) (All versions >= V7.80 < V10.0), SIPROTEC 5 6MD86 (CP300) (All versions >= V7.80 < V10.0), SIPROTEC 5 6MD89 (CP300) (All versi…

EPSS: 0.000 (5.8th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 2.4 (Low). Vector: CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L.

Affected products

Siemens Siprotec 5 6md84 (Cp300) — versions 0
Siemens Siprotec 5 6md85 (Cp300) — versions V7.80
Siemens Siprotec 5 6md86 (Cp300) — versions V7.80
Siemens Siprotec 5 6md89 (Cp300) — versions V7.80
Siemens Siprotec 5 6mu85 (Cp300) — versions V7.80
Siemens Siprotec 5 7ke85 (Cp300) — versions V7.80
Siemens Siprotec 5 7sa82 (Cp150) — versions 0
Siemens Siprotec 5 7sa86 (Cp300) — versions V7.80
Siemens Siprotec 5 7sa87 (Cp300) — versions V7.80
Siemens Siprotec 5 7sd82 (Cp150) — versions 0

Weakness classification (CWE)

CWE-770 — Allocation of Resources Without Limits or Throttling

References

cert-portal.siemens.com/productcert/html/ssa-894058.html

Frequently asked questions

What is CVE-2025-40570?: CVE-2025-40570 is a low-severity vulnerability in Siemens Siprotec 5 6md84 (Cp300), classified under Allocation of Resources Without Limits or Throttling. CVSS score: 2.4/10. Published 2025-08-12.
How severe is CVE-2025-40570?: Low severity. CVSS v3 base score is 2.4 out of 10.