Primary

Context

Siemens SCALANCE LPE9403 Authentication Bypass Vulnerability

Vulnerability

An authentication bypass vulnerability has been identified in Siemens SCALANCE LPE9403 (6GK5998-3GS00-2AC2) devices, all versions with SINEMA Remote Connect Edge Client installed. This vulnerability allows a non-privileged local attacker to bypass authentication for the SINEMA Remote Connect Edge Client, enabling them to read and modify configuration parameters.

Impact

Exploitation of this vulnerability could lead to unauthorized access to the SINEMA Remote Connect Edge Client's authentication mechanism, allowing for unauthorized reading and modification of configuration parameters.

Remediation

Siemens has released a new version for SCALANCE LPE9403 and recommends updating to the latest version. For products where fixes are not yet available, Siemens advises restricting access to authorized and trusted personnel only.

Added: Sep 1, 2025, 7:22 PM

Updated: Sep 1, 2025, 7:22 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

5.0

exploitability

7.4

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

5.0

exploitability

7.4

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Siemens SCALANCE LPE9403 Authentication Bypass Vulnerability

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating