CVE-2025-24811
First published: Tue Feb 11 2025(Updated: )
A vulnerability has been identified in SIMATIC S7-1200 CPU 1211C AC/DC/Rly (6ES7211-1BE40-0XB0), SIMATIC S7-1200 CPU 1211C DC/DC/DC (6ES7211-1AE40-0XB0), SIMATIC S7-1200 CPU 1211C DC/DC/Rly (6ES7211-1HE40-0XB0), SIMATIC S7-1200 CPU 1212C AC/DC/Rly (6ES7212-1BE40-0XB0), SIMATIC S7-1200 CPU 1212C DC/DC/DC (6ES7212-1AE40-0XB0), SIMATIC S7-1200 CPU 1212C DC/DC/Rly (6ES7212-1HE40-0XB0), SIMATIC S7-1200 CPU 1212FC DC/DC/DC (6ES7212-1AF40-0XB0), SIMATIC S7-1200 CPU 1212FC DC/DC/Rly (6ES7212-1HF40-0XB0), SIMATIC S7-1200 CPU 1214C AC/DC/Rly (6ES7214-1BG40-0XB0), SIMATIC S7-1200 CPU 1214C DC/DC/DC (6ES7214-1AG40-0XB0), SIMATIC S7-1200 CPU 1214C DC/DC/Rly (6ES7214-1HG40-0XB0), SIMATIC S7-1200 CPU 1214FC DC/DC/DC (6ES7214-1AF40-0XB0), SIMATIC S7-1200 CPU 1214FC DC/DC/Rly (6ES7214-1HF40-0XB0), SIMATIC S7-1200 CPU 1215C AC/DC/Rly (6ES7215-1BG40-0XB0), SIMATIC S7-1200 CPU 1215C DC/DC/DC (6ES7215-1AG40-0XB0), SIMATIC S7-1200 CPU 1215C DC/DC/Rly (6ES7215-1HG40-0XB0), SIMATIC S7-1200 CPU 1215FC DC/DC/DC (6ES7215-1AF40-0XB0), SIMATIC S7-1200 CPU 1215FC DC/DC/Rly (6ES7215-1HF40-0XB0), SIMATIC S7-1200 CPU 1217C DC/DC/DC (6ES7217-1AG40-0XB0), SIPLUS S7-1200 CPU 1212 AC/DC/RLY (6AG1212-1BE40-2XB0), SIPLUS S7-1200 CPU 1212 AC/DC/RLY (6AG1212-1BE40-4XB0), SIPLUS S7-1200 CPU 1212 DC/DC/RLY (6AG1212-1HE40-2XB0), SIPLUS S7-1200 CPU 1212 DC/DC/RLY (6AG1212-1HE40-4XB0), SIPLUS S7-1200 CPU 1212C DC/DC/DC (6AG1212-1AE40-2XB0), SIPLUS S7-1200 CPU 1212C DC/DC/DC (6AG1212-1AE40-4XB0), SIPLUS S7-1200 CPU 1212C DC/DC/DC RAIL (6AG2212-1AE40-1XB0), SIPLUS S7-1200 CPU 1214 AC/DC/RLY (6AG1214-1BG40-2XB0), SIPLUS S7-1200 CPU 1214 AC/DC/RLY (6AG1214-1BG40-4XB0), SIPLUS S7-1200 CPU 1214 AC/DC/RLY (6AG1214-1BG40-5XB0), SIPLUS S7-1200 CPU 1214 DC/DC/DC (6AG1214-1AG40-2XB0), SIPLUS S7-1200 CPU 1214 DC/DC/DC (6AG1214-1AG40-4XB0), SIPLUS S7-1200 CPU 1214 DC/DC/DC (6AG1214-1AG40-5XB0), SIPLUS S7-1200 CPU 1214 DC/DC/RLY (6AG1214-1HG40-2XB0), SIPLUS S7-1200 CPU 1214 DC/DC/RLY (6AG1214-1HG40-4XB0), SIPLUS S7-1200 CPU 1214 DC/DC/RLY (6AG1214-1HG40-5XB0), SIPLUS S7-1200 CPU 1214C DC/DC/DC RAIL (6AG2214-1AG40-1XB0), SIPLUS S7-1200 CPU 1214FC DC/DC/DC (6AG1214-1AF40-5XB0), SIPLUS S7-1200 CPU 1214FC DC/DC/RLY (6AG1214-1HF40-5XB0), SIPLUS S7-1200 CPU 1215 AC/DC/RLY (6AG1215-1BG40-2XB0), SIPLUS S7-1200 CPU 1215 AC/DC/RLY (6AG1215-1BG40-4XB0), SIPLUS S7-1200 CPU 1215 AC/DC/RLY (6AG1215-1BG40-5XB0), SIPLUS S7-1200 CPU 1215 DC/DC/DC (6AG1215-1AG40-2XB0), SIPLUS S7-1200 CPU 1215 DC/DC/DC (6AG1215-1AG40-4XB0), SIPLUS S7-1200 CPU 1215 DC/DC/RLY (6AG1215-1HG40-2XB0), SIPLUS S7-1200 CPU 1215 DC/DC/RLY (6AG1215-1HG40-4XB0), SIPLUS S7-1200 CPU 1215 DC/DC/RLY (6AG1215-1HG40-5XB0), SIPLUS S7-1200 CPU 1215C DC/DC/DC (6AG1215-1AG40-5XB0), SIPLUS S7-1200 CPU 1215FC DC/DC/DC (6AG1215-1AF40-5XB0). Affected devices do not process correctly certain special crafted packets sent to port 80/tcp, which could allow an unauthenticated attacker to cause a denial of service in the device.
Credit: productcert@siemens.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Siemens SIMATIC S7-1200 CPU 1211C AC/DC/Rly | ||
| Siemens SIMATIC S7-1200 CPU 1211C DC/DC/DC | ||
| Siemens SIMATIC S7-1200 CPU 1211C DC/DC/Rly | ||
| Siemens SIMATIC S7-1200 CPU 1212C AC/DC/Rly | ||
| Siemens SIMATIC S7-1200 CPU 1212C DC/DC/DC | ||
| Siemens SIMATIC S7-1200 CPU 1212C DC/DC/Rly | ||
| Siemens SIMATIC S7-1200 CPU 1212FC DC/DC/DC | ||
| Siemens SIMATIC S7-1200 CPU 1212FC DC/DC/Rly | ||
| Siemens SIMATIC S7-1200 CPU 1214C AC/DC/Rly | ||
| Siemens SIMATIC S7-1200 CPU 1214C DC/DC/DC | ||
| Siemens SIMATIC S7-1200 CPU 1214C DC/DC/Rly | ||
| Siemens SIMATIC S7-1200 CPU 1214FC DC/DC/DC | ||
| Siemens SIMATIC S7-1200 CPU 1214FC DC/DC/Rly | ||
| Siemens SIMATIC S7-1200 CPU 1215C AC/DC/Rly | ||
| Siemens SIMATIC S7-1200 CPU 1215C DC/DC/DC | ||
| Siemens SIMATIC S7-1200 CPU 1215C DC/DC/Rly | ||
| Siemens SIMATIC S7-1200 CPU 1215FC DC/DC/DC | ||
| Siemens SIMATIC S7-1200 CPU 1215FC DC/DC/Rly | ||
| Siemens SIMATIC S7-1200 CPU 1217C DC/DC/DC | ||
| Siemens SIPLUS S7-1200 CPU 1212 AC/DC/RLY | ||
| Siemens SIPLUS S7-1200 CPU 1212 DC/DC/RLY | ||
| Siemens SIPLUS S7-1200 CPU 1212C DC/DC/DC | ||
| Siemens SIPLUS S7-1200 CPU 1212C DC/DC/DC RAIL | ||
| Siemens SIPLUS S7-1200 CPU 1214 AC/DC/RLY | ||
| Siemens SIPLUS S7-1200 CPU 1214 DC/DC/DC | ||
| Siemens SIPLUS S7-1200 CPU 1214FC DC/DC/RLY | ||
| Siemens SIPLUS S7-1200 CPU 1214C DC/DC/DC RAIL | ||
| Siemens SIPLUS S7-1200 CPU 1214FC DC/DC/DC | ||
| Siemens SIPLUS S7-1200 CPU 1214FC DC/DC/RLY | ||
| Siemens SIPLUS S7-1200 CPU 1215 AC/DC/RLY | ||
| Siemens SIPLUS S7-1200 CPU 1215C DC/DC/DC | ||
| Siemens SIPLUS S7-1200 CPU 1215 DC/DC/RLY | ||
| Siemens SIPLUS S7-1200 CPU 1215C DC/DC/DC | ||
| Siemens SIPLUS S7-1200 CPU 1215FC DC/DC/DC |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the severity of CVE-2025-24811?
The severity of CVE-2025-24811 is classified as critical due to its potential impact on the affected systems.
How do I fix CVE-2025-24811?
To mitigate CVE-2025-24811, users should apply the latest firmware updates provided by Siemens for the affected SIMATIC S7-1200 CPUs.
What systems are affected by CVE-2025-24811?
CVE-2025-24811 affects various models of the Siemens SIMATIC S7-1200 CPUs, including the 1211C, 1212C, and 1214C series.
Has CVE-2025-24811 been publicly disclosed?
Yes, CVE-2025-24811 has been publicly disclosed by Siemens in their security advisory.
What are the potential risks of CVE-2025-24811?
The potential risks of CVE-2025-24811 include unauthorized access and control over industrial automation systems, leading to operational disruptions.
- collector/mitre-cve
- source/MITRE
- agent/weakness
- agent/references
- agent/description
- agent/type
- agent/first-publish-date
- agent/guess-ai
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- agent/softwarecombine
- collector/nvd-api
- source/NVD
- agent/severity
- agent/last-modified-date
- agent/author
- agent/event
- collector/epss-latest
- source/FIRST
- agent/source
- agent/tags
- agent/epss
- vendor/siemens
- canonical/siemens simatic s7-1200 cpu 1211c ac/dc/rly
- canonical/siemens simatic s7-1200 cpu 1211c dc/dc/dc
- canonical/siemens simatic s7-1200 cpu 1211c dc/dc/rly
- canonical/siemens simatic s7-1200 cpu 1212c ac/dc/rly
- canonical/siemens simatic s7-1200 cpu 1212c dc/dc/dc
- canonical/siemens simatic s7-1200 cpu 1212c dc/dc/rly
- canonical/siemens simatic s7-1200 cpu 1212fc dc/dc/dc
- canonical/siemens simatic s7-1200 cpu 1212fc dc/dc/rly
- canonical/siemens simatic s7-1200 cpu 1214c ac/dc/rly
- canonical/siemens simatic s7-1200 cpu 1214c dc/dc/dc
- canonical/siemens simatic s7-1200 cpu 1214c dc/dc/rly
- canonical/siemens simatic s7-1200 cpu 1214fc dc/dc/dc
- canonical/siemens simatic s7-1200 cpu 1214fc dc/dc/rly
- canonical/siemens simatic s7-1200 cpu 1215c ac/dc/rly
- canonical/siemens simatic s7-1200 cpu 1215c dc/dc/dc
- canonical/siemens simatic s7-1200 cpu 1215c dc/dc/rly
- canonical/siemens simatic s7-1200 cpu 1215fc dc/dc/dc
- canonical/siemens simatic s7-1200 cpu 1215fc dc/dc/rly
- canonical/siemens simatic s7-1200 cpu 1217c dc/dc/dc
- canonical/siemens siplus s7-1200 cpu 1212 ac/dc/rly
- canonical/siemens siplus s7-1200 cpu 1212 dc/dc/rly
- canonical/siemens siplus s7-1200 cpu 1212c dc/dc/dc
- canonical/siemens siplus s7-1200 cpu 1212c dc/dc/dc rail
- canonical/siemens siplus s7-1200 cpu 1214 ac/dc/rly
- canonical/siemens siplus s7-1200 cpu 1214 dc/dc/dc
- canonical/siemens siplus s7-1200 cpu 1214fc dc/dc/rly
- canonical/siemens siplus s7-1200 cpu 1214c dc/dc/dc rail
- canonical/siemens siplus s7-1200 cpu 1214fc dc/dc/dc
- canonical/siemens siplus s7-1200 cpu 1215 ac/dc/rly
- canonical/siemens siplus s7-1200 cpu 1215c dc/dc/dc
- canonical/siemens siplus s7-1200 cpu 1215 dc/dc/rly
- canonical/siemens siplus s7-1200 cpu 1215fc dc/dc/dc