CVE-2026-54798
Received Received - Intake

Denial of Service in CPCI85 Central Processing/Communication

Vulnerability report for CVE-2026-54798, including description, CVSS score, EPSS score, affected products, exploitability, helpful resources, and attack-flow context.

Publication date: 2026-07-09

Last updated on: 2026-07-09

Assigner: Siemens AG

Description

A vulnerability has been identified in CPCI85 Central Processing/Communication (All versions < V26.20), SICORE Base system (All versions < V26.20.0). The affected application includes a debugging interface that is accessible through HTTP endpoints. This could allow an authenticated attacker to disrupt the system by crashing the web process causing denial of service conditions.

CVSS Scores

EPSS Scores

Probability:
Percentile:

Meta Information

Published
2026-07-09
Last Modified
2026-07-09
Generated
2026-07-09
AI Q&A
2026-07-09
EPSS Evaluated
N/A
NVD
EUVD

Affected Vendors & Products

Showing 2 associated CPEs
Vendor Product Version / Range
siemens cpci85 to 26.20 (exc)
siemens sicore to 26.20.0 (exc)

Helpful Resources

Exploitability

CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-489 The product is released with debugging code still enabled or active.

Attack-Flow Graph

AI Quick Actions

Instant insights powered by AI
Executive Summary

This vulnerability exists in the CPCI85 Central Processing/Communication and SICORE Base system versions prior to V26.20. It involves a debugging interface that is accessible through HTTP endpoints.

An authenticated attacker could exploit this interface to disrupt the system by crashing the web process, which leads to denial of service conditions.

Impact Analysis

The primary impact of this vulnerability is that an authenticated attacker can cause a denial of service by crashing the web process of the affected system.

This disruption can lead to system unavailability, potentially affecting operations that rely on the CPCI85 or SICORE systems.

Chat Assistant

Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-54798. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70

EPSS Chart