Details of VAR-202504-1195

ID

VAR-202504-1195

CVE

CVE-2025-29931

TITLE

Siemens TeleControl Server Basic Denial of Service Vulnerability

Trust: 0.6

sources: CNVD: CNVD-2025-08973

DESCRIPTION

A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected product does not properly validate a length field in a serialized message which it uses to determine the amount of memory to be allocated for deserialization. This could allow an unauthenticated remote attacker to cause the application to allocate exhaustive amounts of memory and subsequently create a partial denial of service condition. Successful exploitation is only possible in redundant Telecontrol Server Basic setups and only if the connection between the redundant servers has been disrupted. TeleControl Server Basic is a server software for remote monitoring and control, widely used in the field of industrial automation. Versions prior to TeleControl Server Basicv3.1.2.2 have a denial of service vulnerability, which is caused by improper length parameter processing

Trust: 1.44

sources: NVD: CVE-2025-29931 // CNVD: CNVD-2025-08973

IOT TAXONOMY

category:

['ICS']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2025-08973

AFFECTED PRODUCTS

vendor:

siemens

model:

telecontrol server basic

scope:

version:

v3.1.2.2

Trust: 0.6

sources: CNVD: CNVD-2025-08973

CVSS

SEVERITY

CVSSV2

CVSSV3

productcert@siemens.com:	CVE-2025-29931
value:	MEDIUM
Trust: 1.0
CNVD:	CNVD-2025-08973
value:	MEDIUM
Trust: 0.6

CNVD:	CNVD-2025-08973
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:N/I:N/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6

productcert@siemens.com:	CVE-2025-29931
baseSeverity:	LOW
baseScore:	3.7
vectorString:	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L
attackVector:	NETWORK
attackComplexity:	HIGH
privilegesRequired:	NONE
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	LOW
exploitabilityScore:	2.2
impactScore:	1.4
version:	3.1
Trust: 1.0

sources: CNVD: CNVD-2025-08973 // NVD: CVE-2025-29931

PROBLEMTYPE DATA

problemtype:

CWE-130

Trust: 1.0

sources: NVD: CVE-2025-29931

PATCH

title:

Patch for Siemens TeleControl Server Basic Denial of Service Vulnerability

url:

https://www.cnvd.org.cn/patchInfo/show/686151

Trust: 0.6

sources: CNVD: CNVD-2025-08973

EXTERNAL IDS

db:	NVD	id:	CVE-2025-29931	Trust: 1.6
db:	SIEMENS	id:	SSA-395348	Trust: 1.6
db:	CNVD	id:	CNVD-2025-08973	Trust: 0.6

sources: CNVD: CNVD-2025-08973 // NVD: CVE-2025-29931

REFERENCES

url:

https://cert-portal.siemens.com/productcert/html/ssa-395348.html

Trust: 1.6

sources: CNVD: CNVD-2025-08973 // NVD: CVE-2025-29931

SOURCES

db:	CNVD	id:	CNVD-2025-08973
db:	NVD	id:	CVE-2025-29931

LAST UPDATE DATE

2025-05-09T03:19:16.279000+00:00

SOURCES UPDATE DATE

db:	CNVD	id:	CNVD-2025-08973	date:	2025-05-06T00:00:00
db:	NVD	id:	CVE-2025-29931	date:	2025-04-17T20:21:48.243

SOURCES RELEASE DATE

db:	CNVD	id:	CNVD-2025-08973	date:	2025-04-17T00:00:00
db:	NVD	id:	CVE-2025-29931	date:	2025-04-17T11:15:47.807