CVE-2025-27393

Name of the Vulnerable Software and Affected Versions SCALANCE LPE9403 versions prior to V4.0

Description A vulnerability has been identified where affected devices do not properly sanitize user input when creating new users. This could allow an authenticated highly-privileged remote attacker to execute arbitrary code on the device.

Recommendations For versions prior to V4.0, update to version V4.0 or later to resolve the issue. As a temporary workaround, consider restricting access to user creation functionality to minimize the risk of exploitation. Avoid using the device with highly-privileged remote access until the issue is resolved.