CVE-2025-40804

Siemens · SIMATIC Virtualization as a Service (SIVaaS)

SIMATIC Virtualization as a Service (SIVaaS) contains an unauthenticated network share exposure vulnerability, potentially allowing unauthorized access to sensitive system files.

Executive summary

An unauthenticated network share exposure in Siemens SIMATIC Virtualization as a Service poses a critical risk of unauthorized access to sensitive infrastructure data.

Vulnerability

The application incorrectly configures network shares, resulting in an unauthenticated exposure of sensitive data. This allows any attacker with network access to the share to read or interact with files without providing credentials.

Business impact

The exposure of network shares in a virtualization environment can lead to full system compromise, data exfiltration, or the injection of malicious files into the virtualized infrastructure. Given the CVSS score of 9.1, this vulnerability is classified as critical, as it bypasses standard access control mechanisms and could facilitate lateral movement within the industrial control network.

Remediation

Immediate Action: Restrict network access to the affected shares at the firewall level and consult the Siemens vendor advisory for the latest security patch or configuration hardening steps.

Proactive Monitoring: Audit all SMB/network share access logs for connections originating from unauthorized or unexpected IP addresses.

Compensating Controls: Implement strict network segmentation to ensure that only authorized administrative workstations can communicate with the SIVaaS management interfaces and associated shares.

Exploitation status

Public Exploit Available: Not stated

Analyst recommendation

This vulnerability represents a significant security oversight that requires immediate attention. Administrators must prioritize isolating the affected systems from untrusted network segments and apply the vendor-recommended updates as soon as they are available to prevent unauthorized data access.