CVE-2025-23403

Name of the Vulnerable Software and Affected Versions: SIMATIC IPC DiagBase (All versions) SIMATIC IPC DiagMonitor (All versions)

Description: A vulnerability has been identified where the affected devices do not properly restrict user permissions for the registry key. This could allow an authenticated attacker to load vulnerable drivers into the system, leading to privilege escalation or bypassing endpoint protection and other security measures.

Recommendations: For SIMATIC IPC DiagBase, restrict access to the registry key to prevent unauthorized loading of drivers. For SIMATIC IPC DiagMonitor, limit user permissions to prevent exploitation of the vulnerability. As a temporary workaround, consider disabling the loading of vulnerable drivers into the system until a patch is available. Restrict access to the system to minimize the risk of exploitation.