CVE-2025-27394
Published: 11 March 2025
Description
Adversaries may abuse Unix shell commands and scripts for execution.
Security Summary
CVE-2025-27394 affects Siemens SCALANCE LPE9403 devices (order number 6GK5998-3GS00-2AC2) in all versions prior to V4.0. The vulnerability arises from improper sanitization of user input when creating new SNMP users, classified as CWE-78 (OS Command Injection). It carries a CVSS v3.1 base score of 7.2 (AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H), indicating high severity due to potential impacts on confidentiality, integrity, and availability.
An authenticated remote attacker with high privileges can exploit this vulnerability over the network with low attack complexity and no user interaction required. Exploitation enables arbitrary code execution on the device, allowing full compromise of the affected SCALANCE LPE9403.
Mitigation details are provided in the Siemens security advisory at https://cert-portal.siemens.com/productcert/html/ssa-075201.html. Affected devices should be updated to version V4.0 or later to address the issue.
Details
- CWE(s)
Affected Products
MITRE ATT&CK Enterprise Techniques
Why these techniques?
OS command injection (CWE-78) enables authenticated high-priv remote attacker to achieve arbitrary code execution and full device compromise, directly mapping to exploitation for privilege escalation (T1068) and Unix shell command execution (T1059.004).