Unauthorized Access via Exposed Service Port (SINEC Traffic Analyzer <V3.0)
CVE-2025-40768 Published on August 12, 2025
A vulnerability has been identified in SINEC Traffic Analyzer (6GK8822-1BG01-0BA0) (All versions < V3.0). The affected application exposes an internal service port to be accessible from outside the system. This could allow an unauthorized attacker to access the application.
Weakness Type
What is an Information Disclosure Vulnerability?
The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.
CVE-2025-40768 has been classified to as an Information Disclosure vulnerability or weakness.
Products Associated with CVE-2025-40768
Want to know whenever a new CVE is published for Siemens Sinec Traffic Analyzer? stack.watch will email you.
Affected Versions
Siemens SINEC Traffic Analyzer:- Before V3.0 is affected.
Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.