Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2025-40585

A vulnerability has been identified in Energy Services (All versions with G5DFR). Affected solutions using G5DFR contain default credentials. This could allow an attacker to gain control of G5DFR component and tamper with outputs from the device.

Published

2025-06-10T16:15:38.943

Last Modified

2025-06-12T16:06:39.330

Status

Awaiting Analysis

Source

[email protected]

Severity

CVSSv3.1: 9.9 (CRITICAL)

Weaknesses

Type: Secondary
CWE-276

Affected Vendors & Products

References

https://cert-portal.siemens.com/productcert/html/ssa-345750.html ([email protected])