{"description":"Trending threats, MITRE ATT\u0026CK coverage, and detection metadata. Fed continuously.","feed_url":"https://feed.craftedsignal.io/products/scalance-x204irt-6gk5204-0ba10-2ba3/feed.json","home_page_url":"https://feed.craftedsignal.io/","items":[{"_cs_actors":[],"_cs_cpes":["cpe:2.3:a:openssl:openssl:*:*:*:*:*:*:*:*"],"_cs_cves":[{"cvss":8.8,"id":"CVE-2025-15467"}],"_cs_exploited":false,"_cs_has_poc":false,"_cs_poc_references":[],"_cs_products":["SCALANCE LPE9413 (6GK5998-3GS01-2AC2)","SCALANCE LPE9433 (6GK5998-3GS11-2AC2)","SCALANCE M804PB (6GK5804-0AP00-2AA2)","SCALANCE M812-1 ADSL-Router family","SCALANCE M816-1 ADSL-Router family","SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)","SCALANCE M874-2 (6GK5874-2AA00-2AA2)","SCALANCE M874-3 (6GK5874-3AA00-2AA2)","SCALANCE M876-3 (6GK5876-3AA02-2BA2)","SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)","SCALANCE M876-4 (6GK5876-4AA10-2BA2)","SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)","SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)","SCALANCE MUB852-1 (A1) (6GK5852-1EA10-1AA1)","SCALANCE MUB852-1 (B1) (6GK5852-1EA10-1BA1)","SCALANCE MUM853-1 (A1) (6GK5853-2EA10-2AA1)","SCALANCE MUM853-1 (B1) (6GK5853-2EA10-2BA1)","SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)","SCALANCE MUM856-1 (A1) (6GK5856-2EA10-3AA1)","SCALANCE MUM856-1 (B1) (6GK5856-2EA10-3BA1)","SCALANCE MUM856-1 (CN) (6GK5856-2EA00-3FA1)","SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)","SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)","SCALANCE S615 LAN-Router","SCALANCE SC622-2C (6GK5622-2GS00-2AC2)","SCALANCE SC626-2C (6GK5626-2GS00-2AC2)","SCALANCE SC632-2C (6GK5632-2GS00-2AC2)","SCALANCE SC636-2C (6GK5636-2GS00-2AC2)","SCALANCE SC642-2C (6GK5642-2GS00-2AC2)","SCALANCE SC646-2C (6GK5646-2GS00-2AC2)","SCALANCE WAB762-1 (6GK5762-1AJ00-6AA0)","SCALANCE WAM763-1 (6GK5763-1AL00-7DA0)","SCALANCE WAM763-1 (ME) (6GK5763-1AL00-7DC0)","SCALANCE WAM763-1 (US) (6GK5763-1AL00-7DB0)","SCALANCE WAM766-1 (6GK5766-1GE00-7DA0)","SCALANCE WAM766-1 (US) (6GK5766-1GE00-7DB0)","SCALANCE WAM766-1 EEC (ME) (6GK5766-1GE00-7TC0)","SCALANCE WAM766-1 EEC (US) (6GK5766-1GE00-7TB0)","SCALANCE WUB762-1 (6GK5762-1AJ00-1AA0)","SCALANCE WUB762-1 iFeatures (6GK5762-1AJ00-2AA0)","SCALANCE WUM763-1 (6GK5763-1AL00-3AA0)","SCALANCE WUM763-1 (6GK5763-1AL00-3DA0)","SCALANCE WUM763-1 (US) (6GK5763-1AL00-3AB0)","SCALANCE WUM763-1 (US) (6GK5763-1AL00-3DB0)","SCALANCE WUM766-1 (6GK5766-1GE00-3DA0)","SCALANCE WUM766-1 (ME) (6GK5766-1GE00-3DC0)","SCALANCE WUM766-1 (USA) (6GK5766-1GE00-3DB0)","SCALANCE X200-4P IRT (6GK5200-4AH00-2BA3)","SCALANCE X200-4P IRT (6GK5200-4AH10-2BA3)","SCALANCE X201-3P IRT (6GK5201-3BH00-2BA3)","SCALANCE X201-3P IRT (6GK5201-3BH10-2BA3)","SCALANCE X201-3P IRT PRO (6GK5201-3JR00-2BA6)","SCALANCE X201-3P IRT PRO (6GK5201-3JR10-2BA6)","SCALANCE X202-2IRT (6GK5202-2BB00-2BA3)","SCALANCE X202-2IRT (6GK5202-2BB10-2BA3)","SCALANCE X202-2P IRT (6GK5202-2BH00-2BA3)","SCALANCE X202-2P IRT (6GK5202-2BH10-2BA3)","SCALANCE X202-2P IRT PRO (6GK5202-2JR00-2BA6)","SCALANCE X202-2P IRT PRO (6GK5202-2JR10-2BA6)","SCALANCE X204-2 (6GK5204-2BB10-2AA3)","SCALANCE X204-2FM (6GK5204-2BB11-2AA3)","SCALANCE X204-2LD (6GK5204-2BC10-2AA3)","SCALANCE X204-2LD TS (6GK5204-2BC10-2CA2)","SCALANCE X204-2TS (6GK5204-2BB10-2CA2)","SCALANCE X204IRT (6GK5204-0BA00-2BA3)","SCALANCE X204IRT (6GK5204-0BA10-2BA3)","SCALANCE X204IRT PRO (6GK5204-0JA00-2BA6)","SCALANCE X204IRT PRO (6GK5204-0JA10-2BA6)","SCALANCE X204RNA (HSR) (6GK5204-0BA00-2MB2)","SCALANCE X204RNA EEC (HSR) (6GK5204-0BS00-2NA3)","SCALANCE X204RNA EEC (PRP) (6GK5204-0BS00-3LA3)","SCALANCE X204RNA EEC (PRP/HSR) (6GK5204-0BS00-3PA3)","SCALANCE X206-1 (6GK5206-1BB10-2AA3)","SCALANCE X206-1LD (6GK5206-1BC10-2AA3)","SCALANCE X208 (6GK5208-0BA10-2AA3)","SCALANCE X212-2 (6GK5212-2BB00-2AA3)","SCALANCE X212-2LD (6GK5212-2BC00-2AA3)","SCALANCE X216 (6GK5216-0BA00-2AA3)","SCALANCE X224 (6GK5224-0BA00-2AA3)","SCALANCE X302-7 EEC (230V) (6GK5302-7GD00-3EA3)","SCALANCE X302-7 EEC (24V) (6GK5302-7GD00-1EA3)","SCALANCE X302-7 EEC (24V, coated) (6GK5302-7GD00-1GA3)","SCALANCE X302-7 EEC (2x 230V) (6GK5302-7GD00-4EA3)","SCALANCE X302-7 EEC (2x 230V, coated) (6GK5302-7GD00-4GA3)","SCALANCE X302-7 EEC (2x 24V) (6GK5302-7GD00-2EA3)","SCALANCE X302-7 EEC (2x 24V, coated) (6GK5302-7GD00-2GA3)","SCALANCE X304-2FE (6GK5304-2BD00-2AA3)","SCALANCE X306-1LD FE (6GK5306-1BF00-2AA3)","SCALANCE X307-2 EEC (230V) (6GK5307-2FD00-3EA3)","SCALANCE X307-2 EEC (230V, coated) (6GK5307-2FD00-3GA3)","SCALANCE X307-2 EEC (24V) (6GK5307-2FD00-1EA3)","SCALANCE X307-2 EEC (24V, coated) (6GK5307-2FD00-1GA3)","SCALANCE X307-2 EEC (2x 230V) (6GK5307-2FD00-4EA3)","SCALANCE X307-2 EEC (2x 230V, coated) (6GK5307-2FD00-4GA3)","SCALANCE X307-2 EEC (2x 24V) (6GK5307-2FD00-2EA3)","SCALANCE X307-3 (6GK5307-3BL00-2AA3)","SCALANCE X307-3 (6GK5307-3BL10-2AA3)","SCALANCE X307-3LD (6GK5307-3BM00-2AA3)","SCALANCE X307-3LD (6GK5307-3BM10-2AA3)","SCALANCE X308-2 (6GK5308-2FL00-2AA3)"],"_cs_severities":["high"],"_cs_tags":["industrial_control_systems","ics_scada","vulnerability","siemens","network_device","ot"],"_cs_type":"threat","_cs_vendors":["Siemens"],"content_html":"\u003cp\u003eSiemens has disclosed multiple critical vulnerabilities affecting a wide range of its SCALANCE industrial network products, specifically across the LPE, M, W, and X series. These vulnerabilities, including CVE-2025-15467, could enable a remote attacker to execute arbitrary code, initiate a denial-of-service condition, or compromise the confidentiality of data on the affected devices. All versions of the listed products are impacted. A significant concern for defenders is that Siemens has explicitly stated that some products, notably SCALANCE LPE9413 and LPE9433, will not receive security patches for CVE-2025-15467, leaving them permanently vulnerable to this critical flaw. These devices are widely used in industrial control systems (ICS) environments, making the potential impact on operational technology (OT) networks severe. The advisories were published on June 9, 2026, by CERT-FR and Siemens.\u003c/p\u003e\n\u003ch2 id=\"attack-chain\"\u003eAttack Chain\u003c/h2\u003e\n\u003col\u003e\n\u003cli\u003e\u003cstrong\u003eInitial Access\u003c/strong\u003e: An attacker gains network access to a vulnerable Siemens SCALANCE device, potentially exposed directly to the internet or accessible within an internal network segment.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eVulnerability Exploitation\u003c/strong\u003e: The attacker crafts and sends a malicious network request or specially formatted input to the vulnerable SCALANCE device, exploiting CVE-2025-15467 or other unspecified vulnerabilities.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eArbitrary Code Execution\u003c/strong\u003e: Successful exploitation of specific vulnerabilities (e.g., CVE-2025-15467) leads to arbitrary code execution, allowing the attacker to run commands on the affected device.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eDenial of Service\u003c/strong\u003e: Alternatively, exploitation of other vulnerabilities could cause the SCALANCE device to become unresponsive or crash, leading to a remote denial of service (DoS) and disruption of network communications.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eData Confidentiality Breach\u003c/strong\u003e: Exploitation may also enable unauthorized access to sensitive configuration data, network traffic, or other information processed by the network device.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eLateral Movement/Operational Disruption\u003c/strong\u003e: With arbitrary code execution, the attacker could use the compromised SCALANCE device as a pivot point for lateral movement within the OT network or to manipulate network traffic, causing wider operational disruption.\u003c/li\u003e\n\u003c/ol\u003e\n\u003ch2 id=\"impact\"\u003eImpact\u003c/h2\u003e\n\u003cp\u003eThe impact of these vulnerabilities is significant, particularly for organizations operating Industrial Control Systems (ICS) and Operational Technology (OT) networks where Siemens SCALANCE devices are deployed. Successful exploitation could lead to widespread disruption of industrial processes, safety incidents, and compromise of critical infrastructure. Arbitrary code execution grants attackers deep control over network segments, enabling them to alter device configurations, intercept or manipulate industrial protocols, and potentially exfiltrate sensitive operational data. A denial-of-service attack could halt production, disrupt communication between critical systems, and incur substantial financial losses due to downtime and recovery efforts. The lack of patches for certain products means these critical risks will persist, necessitating urgent mitigation strategies for affected organizations.\u003c/p\u003e\n\u003ch2 id=\"recommendation\"\u003eRecommendation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eImmediately identify all Siemens SCALANCE LPE, M, W, and X series devices within your environment using inventory logs, specifically checking for the models listed in the \u0026quot;Affected Products\u0026quot; section.\u003c/li\u003e\n\u003cli\u003eFor products that will receive patches, apply all available Siemens security updates as soon as possible, following the vendor's guidance in their security advisories (e.g., Siemens SSA-063511, SSA-139483, SSA-434797).\u003c/li\u003e\n\u003cli\u003eImplement stringent network segmentation and access controls to restrict direct access to SCALANCE devices, especially for models vulnerable to CVE-2025-15467 without a patch, as recommended in the Siemens security advisories.\u003c/li\u003e\n\u003cli\u003eMonitor network traffic to and from SCALANCE devices for unusual connection attempts, high-volume traffic patterns, or communication with suspicious external IP addresses, detectable via rules like \u0026quot;Detect Network Scans for ICS/OT Devices\u0026quot;.\u003c/li\u003e\n\u003cli\u003eDeploy the Sigma rules in this brief to your SIEM and tune them for your OT network environment to detect potential exploitation attempts or post-exploitation activities.\u003c/li\u003e\n\u003c/ul\u003e\n","date_modified":"2026-06-14T09:10:59Z","date_published":"2026-06-14T09:10:59Z","id":"https://feed.craftedsignal.io/briefs/2026-06-siemens-scalance-vulnerabilities/","summary":"Multiple high-severity vulnerabilities, including CVE-2025-15467, affect various Siemens SCALANCE LPE, M, W, and X series industrial network devices, potentially allowing a remote attacker to achieve arbitrary code execution, provoke a denial of service, or compromise data confidentiality, with some products confirmed to receive no future patches.","title":"Multiple Critical Vulnerabilities in Siemens SCALANCE Industrial Network Products, Including Unpatched Devices","url":"https://feed.craftedsignal.io/briefs/2026-06-siemens-scalance-vulnerabilities/"}],"language":"en","title":"CraftedSignal Threat Feed - SCALANCE X204IRT (6GK5204-0BA10-2BA3)","version":"https://jsonfeed.org/version/1.1"}