ICSA-26-174-02 · Published 2026-06-23 · View on CISA ICS-CERT ↗

Siemens SIPROTEC 5 Using DIGSI5 Protocol

CVSS 6.1 MEDIUM

Risk Summary

SIPROTEC 5 is vulnerable to arbitrary file uploads by authenticated users using the DIGSI 5 protocol. This could allow an attacker to upload malicious configuration files, potentially causing a permanent denial of service condition. As a mitigation measure, users of the CP050 and CP150 device models are advised to upgrade to version 9.90 or later. For CP300 device models, devices 7ST85 and 7ST86 are advised to upgrade to version 10.00 or later, while the remaining models should upgrade to version 9.90 or later. These versions introduce an allow-list feature that restricts arbitrary file uploads and reduces the risk associated with this vulnerability. Siemens is preparing fix versions and recommends specific countermeasures for products where fixes are not, or not yet available.

CVEs (1)

CVE-2025-40808

Remediations

<br> Users are advised to upgrade to V9.90 or later, which introduces an allow-list feature that restricts arbitrary file uploads
Apply password protection to all DIGSI connections to ensure secure communication
For DIGSI access provision your own certificates signed by your customer PKI as described in https://support.industry.siemens.com/cs/document/109768375
For the available devices [CP050, CP100, CP150 and CP300] , activate role based access control (RBAC) in the device (supported in SIPROTEC 5 firmware versions V7.80 and higher)
Users are advised to upgrade to V10.00 or later, which introduces an allow-list feature that restricts arbitrary file uploads
Currently no fix is planned
Currently no fix is available

Affected Vendors

Siemens

Affected Products (61)

Siemens · SIPROTEC 5 6MD84 (CP300) vers:all/*

Siemens · SIPROTEC 5 6MD85 (CP200) vers:all/*

Siemens · SIPROTEC 5 6MD85 (CP300) vers:all/*

Siemens · SIPROTEC 5 6MD86 (CP200) vers:all/*

Siemens · SIPROTEC 5 6MD86 (CP300) vers:all/*

Siemens · SIPROTEC 5 6MD89 (CP300) vers:all/*

Siemens · SIPROTEC 5 6MU85 (CP300) vers:all/*

Siemens · SIPROTEC 5 7KE85 (CP200) vers:all/*

Siemens · SIPROTEC 5 7KE85 (CP300) vers:all/*

Siemens · SIPROTEC 5 7SA82 (CP100) vers:all/*

Siemens · SIPROTEC 5 7SA82 (CP150) vers:all/*

Siemens · SIPROTEC 5 7SA86 (CP200) vers:all/*

Siemens · SIPROTEC 5 7SA86 (CP300) vers:all/*

Siemens · SIPROTEC 5 7SA87 (CP200) vers:all/*

Siemens · SIPROTEC 5 7SA87 (CP300) vers:all/*

Siemens · SIPROTEC 5 7SD82 (CP100) vers:all/*

Siemens · SIPROTEC 5 7SD82 (CP150) vers:all/*

Siemens · SIPROTEC 5 7SD86 (CP200) vers:all/*

Siemens · SIPROTEC 5 7SD86 (CP300) vers:all/*

Siemens · SIPROTEC 5 7SD87 (CP200) vers:all/*

Siemens · SIPROTEC 5 7SD87 (CP300) vers:all/*

Siemens · SIPROTEC 5 7SJ81 (CP100) vers:all/*

Siemens · SIPROTEC 5 7SJ81 (CP150) vers:all/*

Siemens · SIPROTEC 5 7SJ82 (CP100) vers:all/*

Siemens · SIPROTEC 5 7SJ82 (CP150) vers:all/*

Siemens · SIPROTEC 5 7SJ85 (CP200) vers:all/*

Siemens · SIPROTEC 5 7SJ85 (CP300) vers:all/*

Siemens · SIPROTEC 5 7SJ86 (CP200) vers:all/*

Siemens · SIPROTEC 5 7SJ86 (CP300) vers:all/*

Siemens · SIPROTEC 5 7SK82 (CP100) vers:all/*

Siemens · SIPROTEC 5 7SK82 (CP150) vers:all/*

Siemens · SIPROTEC 5 7SK85 (CP200) vers:all/*

Siemens · SIPROTEC 5 7SK85 (CP300) vers:all/*

Siemens · SIPROTEC 5 7SL82 (CP100) vers:all/*

Siemens · SIPROTEC 5 7SL82 (CP150) vers:all/*

Siemens · SIPROTEC 5 7SL86 (CP200) vers:all/*

Siemens · SIPROTEC 5 7SL86 (CP300) vers:all/*

Siemens · SIPROTEC 5 7SL87 (CP200) vers:all/*

Siemens · SIPROTEC 5 7SL87 (CP300) vers:all/*

Siemens · SIPROTEC 5 7SS85 (CP200) vers:all/*

Siemens · SIPROTEC 5 7SS85 (CP300) vers:all/*

Siemens · SIPROTEC 5 7ST85 (CP200) vers:all/*

Siemens · SIPROTEC 5 7ST85 (CP300) vers:all/*

Siemens · SIPROTEC 5 7ST86 (CP300) vers:all/*

Siemens · SIPROTEC 5 7SX82 (CP150) vers:all/*

Siemens · SIPROTEC 5 7SX85 (CP300) vers:all/*

Siemens · SIPROTEC 5 7SY82 (CP150) vers:all/*

Siemens · SIPROTEC 5 7UM85 (CP300) vers:all/*

Siemens · SIPROTEC 5 7UT82 (CP100) vers:all/*

Siemens · SIPROTEC 5 7UT82 (CP150) vers:all/*

Siemens · SIPROTEC 5 7UT85 (CP200) vers:all/*

Siemens · SIPROTEC 5 7UT85 (CP300) vers:all/*

Siemens · SIPROTEC 5 7UT86 (CP200) vers:all/*

Siemens · SIPROTEC 5 7UT86 (CP300) vers:all/*

Siemens · SIPROTEC 5 7UT87 (CP200) vers:all/*

Siemens · SIPROTEC 5 7UT87 (CP300) vers:all/*

Siemens · SIPROTEC 5 7VE85 (CP300) vers:all/*

Siemens · SIPROTEC 5 7VK87 (CP200) vers:all/*

Siemens · SIPROTEC 5 7VK87 (CP300) vers:all/*

Siemens · SIPROTEC 5 7VU85 (CP300) vers:all/*

Siemens · SIPROTEC 5 Compact 7SX800 (CP050) vers:all/*

Affected Sectors

Critical Manufacturing, Transportation Systems, Energy, Healthcare and Public Health, Financial Services, Government Services and Facilities

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more