CVE-2025-40766
Unknown
Unknown - Not Provided
BaseFortify
Publication date: 2025-08-12
Last updated on: 2025-08-15
Assigner: Siemens AG
Description
Description
A vulnerability has been identified in SINEC Traffic Analyzer (6GK8822-1BG01-0BA0) (All versions < V3.0). The affected application runs docker containers without adequate resource and security limitations. This could allow an attacker to perform a denial-of-service (DoS) attack.
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| siemens | sinec_traffic_analyzer | to 3.0 (exc) |
Helpful Resources
Exploitability
CWE
KEV
| CWE ID | Description |
|---|---|
| CWE-400 | The product does not properly control the allocation and maintenance of a limited resource. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability exists in SINEC Traffic Analyzer versions prior to V3.0, where the application runs docker containers without proper resource and security restrictions. This lack of limitations can be exploited by an attacker to cause a denial-of-service (DoS) attack.
How can this vulnerability impact me? :
An attacker could exploit this vulnerability to perform a denial-of-service (DoS) attack, potentially disrupting the normal operation of the affected system by exhausting resources or causing service interruptions.
Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70