Primary

Context

Siemens SCALANCE LPE9403 Cleartext Transmission of Sensitive Information Vulnerability

Vulnerability

A vulnerability exists in Siemens SCALANCE LPE9403 (6GK5998-3GS00-2AC2) devices with SINEMA Remote Connect Edge Client installed, where sensitive information is transmitted in cleartext. This flaw could enable a privileged local attacker to intercept and retrieve the unencrypted sensitive data.

Impact

Exploitation of this vulnerability could lead to unauthorized access to sensitive information being transmitted over the network.

Remediation

Siemens recommends restricting access to authorized and trusted personnel only. For further guidance, consult the general security recommendations provided by Siemens ProductCERT.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

2.6

impact

2.5

exploitability

4.4

remediation

7.9

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

2.6

impact

2.5

exploitability

4.4

remediation

7.9

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Siemens SCALANCE LPE9403 Cleartext Transmission of Sensitive Information Vulnerability

Vulnerability

Impact

Remediation

Affected Products

Siemens SCALANCE LPE9403

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating