ACCORDING to Siemens ProductCERT, the Siemens ICS advisory ICSA-26-134-06 warns of a vulnerability in multiple Siemens Industrial Devices that could allow an attacker to trigger a denial of service, with a CVSS v3.1 base score of 7.5. The list of affected products is extensive, including IE/PB LINK HA, IE/PB link PN IO, RUGGEDCOM RM1224 LTE, SCALANCE M804PB, M812-1, M816-1 and many other SCALANCE, SIMATIC and SITOP/SIMATIC devices, all associated with CVE-2025-40833.
A manual restart is required to recover the system after exploitation, and Siemens has released new versions while preparing further fixes; in the interim, mitigations advise disabling ethernet ports on the CPU and restricting access to trusted IP addresses. Remediation options include updating to vendor fixes such as V10.2 or later, V2.0.0 or later, V3.2.0 or later, V6.6.0 or later, or V8.3 or later, with several specific links provided for each update.
The advisory notes that currently no fix is planned for some configurations, and reiterates general defensive measures to minimise exposure, including isolating control networks behind firewalls and using VPNs where remote access is necessary.