CVE-2025-26389
CRITICALSiemens OZW672 and OZW772 Firmware < 8.0 - Unauthenticated Remote Code Execution via exportDiagramPage Endpoint
Title source: llmDescription
A vulnerability has been identified in OZW672 (All versions < V8.0), OZW772 (All versions < V8.0). The web service in affected devices does not sanitize the input parameters required for the `exportDiagramPage` endpoint. This could allow an unauthenticated remote attacker to execute arbitrary code with root privileges.
References (1)
Core 1
Core References
Vendor Advisory
https://cert-portal.siemens.com/productcert/html/ssa-047424.html
Scores
CVSS v3
10.0
EPSS
0.0111
EPSS Percentile
78.3%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
yes
Technical Impact
total
Details
CWE
CWE-78
Status
published
Products (2)
siemens/ozw672_firmware
< 8.0
siemens/ozw772_firmware
< 8.0
Published
May 13, 2025
Tracked Since
Feb 18, 2026