CVE-2025-40804
Siemens · SIMATIC Virtualization as a Service (SIVaaS)
SIMATIC Virtualization as a Service (SIVaaS) contains an unauthenticated network share exposure vulnerability, potentially allowing unauthorized access to sensitive system files.
Executive summary
An unauthenticated network share exposure in Siemens SIMATIC Virtualization as a Service poses a critical risk of unauthorized access to sensitive infrastructure data.
Vulnerability
The application incorrectly configures network shares, resulting in an unauthenticated exposure of sensitive data. This allows any attacker with network access to the share to read or interact with files without providing credentials.
Business impact
The exposure of network shares in a virtualization environment can lead to full system compromise, data exfiltration, or the injection of malicious files into the virtualized infrastructure. Given the CVSS score of 9.1, this vulnerability is classified as critical, as it bypasses standard access control mechanisms and could facilitate lateral movement within the industrial control network.
Remediation
Immediate Action: Restrict network access to the affected shares at the firewall level and consult the Siemens vendor advisory for the latest security patch or configuration hardening steps.
Proactive Monitoring: Audit all SMB/network share access logs for connections originating from unauthorized or unexpected IP addresses.
Compensating Controls: Implement strict network segmentation to ensure that only authorized administrative workstations can communicate with the SIVaaS management interfaces and associated shares.
Exploitation status
Public Exploit Available: Not stated
Analyst recommendation
This vulnerability represents a significant security oversight that requires immediate attention. Administrators must prioritize isolating the affected systems from untrusted network segments and apply the vendor-recommended updates as soon as they are available to prevent unauthorized data access.