CVE-2025-54851

Name of the Vulnerable Software and Affected Versions Socomec DIRIS Digiware M-70 version 1.6.9

Description A denial of service condition can occur due to specially crafted network requests targeting the Modbus TCP and Modbus RTU over TCP functionality. An attacker can trigger this by sending unauthenticated packets. Specifically, sending a Modbus TCP message to port 503 using the Write Single Register function code (6) to write the value 1 to register 4352 changes the Modbus address to 15, resulting in a denial-of-service state.

Recommendations For Socomec DIRIS Digiware M-70 version 1.6.9, at the moment, there is no information about a newer version that contains a fix for this vulnerability.