What is CVE-2025-40817?

CVE-2025-40817 is a medium-severity vulnerability in Siemens Logo! 12/24rce, classified under Missing Authentication for Critical Function. CVSS score: 6.5/10. Published 2025-11-11.

How severe is CVE-2025-40817?

Medium severity. CVSS v3 base score is 6.5 out of 10.

Auth bypass in Siemens Logo! 12/24rce

CVE-2025-40817

A vulnerability has been identified in LOGO! 12/24RCE (6ED1052-1MD08-0BA2) (All versions), LOGO! 12/24RCEo (6ED1052-2MD08-0BA2) (All versions), LOGO! 230RCE (6ED1052-1FB08-0BA2) (All versions), LOGO! 230RCEo (6ED1052-2FB08-0BA2) (All versi…

Vulnerability class: Broken Authentication

EPSS: 0.000 (6.4th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 6.5 (Medium). Vector: CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N.

Affected products

Siemens Logo! 12/24rce — versions 0
Siemens Logo! 12/24rceo — versions 0
Siemens Logo! 230rce — versions 0
Siemens Logo! 230rceo — versions 0
Siemens Logo! 24ce — versions 0
Siemens Logo! 24ceo — versions 0
Siemens Logo! 24rce — versions 0
Siemens Logo! 24rceo — versions 0
Siemens Siplus Logo! 12/24rce — versions 0
Siemens Siplus Logo! 12/24rceo — versions 0

Weakness classification (CWE)

CWE-306 — Missing Authentication for Critical Function

References

cert-portal.siemens.com/productcert/html/ssa-267056.html

Frequently asked questions

What is CVE-2025-40817?: CVE-2025-40817 is a medium-severity vulnerability in Siemens Logo! 12/24rce, classified under Missing Authentication for Critical Function. CVSS score: 6.5/10. Published 2025-11-11.
How severe is CVE-2025-40817?: Medium severity. CVSS v3 base score is 6.5 out of 10.