CVE-2025-29931

LOW

TeleControl Server Basic < V3.1.2.2 - Memory Corruption

Title source: llm

Description

A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected product does not properly validate a length field in a serialized message which it uses to determine the amount of memory to be allocated for deserialization. This could allow an unauthenticated remote attacker to cause the application to allocate exhaustive amounts of memory and subsequently create a partial denial of service condition. Successful exploitation is only possible in redundant Telecontrol Server Basic setups and only if the connection between the redundant servers has been disrupted.

References (1)

[Vendor Advisory] https://cert-portal.siemens.com/productcert/html/ssa-395348.html

Scores

CVSS v3 3.7

EPSS 0.0035

EPSS Percentile 56.9%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L

Classification

CWE

CWE-130

Status published

Affected Products (1)

siemens/telecontrol_server_basic < 3.1.2.2

Timeline

Published Apr 17, 2025

Tracked Since Feb 18, 2026