Siemens Device Bypass Auth on API Endpoints (CVE-2025-40805)
CVE-2025-40805 Published on January 13, 2026

Affected devices do not properly enforce user authentication on specific API endpoints. This could facilitate an unauthenticated remote attacker to circumvent authentication and impersonate a legitimate user. Successful exploitation requires that the attacker has learned the identity of a legitimate user.

NVD

Weakness Type

What is an Insecure Direct Object Reference / IDOR Vulnerability?

The system's authorization functionality does not prevent one user from gaining access to another user's data or record by modifying the key value identifying the data.

CVE-2025-40805 has been classified to as an Insecure Direct Object Reference / IDOR vulnerability or weakness.


Affected Versions

Siemens Industrial Edge Cloud Device (IECD): Siemens Industrial Edge Device Kit - arm64 V1.10: Siemens Industrial Edge Device Kit - arm64 V1.11: Siemens Industrial Edge Device Kit - arm64 V1.12: Siemens Industrial Edge Device Kit - arm64 V1.13: Siemens Industrial Edge Device Kit - arm64 V1.14: Siemens Industrial Edge Device Kit - arm64 V1.15: Siemens Industrial Edge Device Kit - arm64 V1.16: Siemens Industrial Edge Device Kit - arm64 V1.17: Siemens Industrial Edge Device Kit - arm64 V1.18: Siemens Industrial Edge Device Kit - arm64 V1.19: Siemens Industrial Edge Device Kit - arm64 V1.20: Siemens Industrial Edge Device Kit - arm64 V1.21: Siemens Industrial Edge Device Kit - arm64 V1.22: Siemens Industrial Edge Device Kit - arm64 V1.23: Siemens Industrial Edge Device Kit - arm64 V1.24: Siemens Industrial Edge Device Kit - arm64 V1.25: Siemens Industrial Edge Device Kit - arm64 V1.5: Siemens Industrial Edge Device Kit - arm64 V1.6: Siemens Industrial Edge Device Kit - arm64 V1.7: Siemens Industrial Edge Device Kit - arm64 V1.8: Siemens Industrial Edge Device Kit - arm64 V1.9: Siemens Industrial Edge Device Kit - x86-64 V1.10: Siemens Industrial Edge Device Kit - x86-64 V1.11: Siemens Industrial Edge Device Kit - x86-64 V1.12: Siemens Industrial Edge Device Kit - x86-64 V1.13: Siemens Industrial Edge Device Kit - x86-64 V1.14: Siemens Industrial Edge Device Kit - x86-64 V1.15: Siemens Industrial Edge Device Kit - x86-64 V1.16: Siemens Industrial Edge Device Kit - x86-64 V1.17: Siemens Industrial Edge Device Kit - x86-64 V1.18: Siemens Industrial Edge Device Kit - x86-64 V1.19: Siemens Industrial Edge Device Kit - x86-64 V1.20: Siemens Industrial Edge Device Kit - x86-64 V1.21: Siemens Industrial Edge Device Kit - x86-64 V1.22: Siemens Industrial Edge Device Kit - x86-64 V1.23: Siemens Industrial Edge Device Kit - x86-64 V1.24: Siemens Industrial Edge Device Kit - x86-64 V1.25: Siemens Industrial Edge Device Kit - x86-64 V1.5: Siemens Industrial Edge Device Kit - x86-64 V1.6: Siemens Industrial Edge Device Kit - x86-64 V1.7: Siemens Industrial Edge Device Kit - x86-64 V1.8: Siemens Industrial Edge Device Kit - x86-64 V1.9: Siemens Industrial Edge Own Device (IEOD): Siemens Industrial Edge Virtual Device (IEVD): Siemens SCALANCE LPE9413: Siemens SCALANCE LPE9433: Siemens SIMATIC Automation Workstation 19": Siemens SIMATIC Automation Workstation 24": Siemens SIMATIC HMI MTP1000 Unified Comfort Panel: Siemens SIMATIC HMI MTP1000 Unified Comfort Panel hygienic: Siemens SIMATIC HMI MTP1000 Unified Comfort Panel hygienic neutral design: Siemens SIMATIC HMI MTP1000, Unified Comfort Panel neutral: Siemens SIMATIC HMI MTP1200 Comfort Pro for stand (expandable, flange at the bottom): Siemens SIMATIC HMI MTP1200 Comfort Pro for support arm (expandable, round tube) and extension unit: Siemens SIMATIC HMI MTP1200 Comfort Pro for support arm (not extendable, flange on top): Siemens SIMATIC HMI MTP1200 Comfort Pro neutral design for stand (expandable, flange at the bottom): Siemens SIMATIC HMI MTP1200 Comfort Pro neutral design for support arm (expandable, round tube) and extensio: Siemens SIMATIC HMI MTP1200 Comfort Pro neutral design for support arm (not extendable, flange on top): Siemens SIMATIC HMI MTP1200 Unified Comfort Panel: Siemens SIMATIC HMI MTP1200 Unified Comfort Panel hygienic: Siemens SIMATIC HMI MTP1200 Unified Comfort Panel hygienic neutral design: Siemens SIMATIC HMI MTP1200 Unified Comfort Panel neutral design: Siemens SIMATIC HMI MTP1500 Comfort Pro for stand (expandable, flange at the bottom): Siemens SIMATIC HMI MTP1500 Comfort Pro for support arm (expandable, round tube) and extension unit: Siemens SIMATIC HMI MTP1500 Comfort Pro for support arm (not extendable, flange on top): Siemens SIMATIC HMI MTP1500 Comfort Pro neutral design for stand (expandable, flange at the bottom): Siemens SIMATIC HMI MTP1500 Comfort Pro neutral design for support arm (expandable, round tube) and extensio: Siemens SIMATIC HMI MTP1500 Comfort Pro neutral design for support arm (not extendable, flange on top): Siemens SIMATIC HMI MTP1500 Unified Comfort Panel: Siemens SIMATIC HMI MTP1500 Unified Comfort Panel hygienic: Siemens SIMATIC HMI MTP1500 Unified Comfort Panel hygienic neutral design: Siemens SIMATIC HMI MTP1500 Unified Comfort Panel neutral design: Siemens SIMATIC HMI MTP1900 Comfort Pro for stand (expandable, flange at the bottom): Siemens SIMATIC HMI MTP1900 Comfort Pro for support arm (expandable, round tube) and extension unit: Siemens SIMATIC HMI MTP1900 Comfort Pro for support arm (not extendable, flange on top): Siemens SIMATIC HMI MTP1900 Comfort Pro neutral design for stand (expandable, flange at the bottom): Siemens SIMATIC HMI MTP1900 Comfort Pro neutral design for support arm (expandable, round tube) and extensio: Siemens SIMATIC HMI MTP1900 Comfort Pro neutral design for support arm (not extendable, flange on top): Siemens SIMATIC HMI MTP1900 Unified Comfort Panel: Siemens SIMATIC HMI MTP1900 Unified Comfort Panel hygienic: Siemens SIMATIC HMI MTP1900 Unified Comfort Panel hygienic neutral design: Siemens SIMATIC HMI MTP1900 Unified Comfort Panel neutral design: Siemens SIMATIC HMI MTP2200 Comfort Pro for stand (expandable, flange at the bottom): Siemens SIMATIC HMI MTP2200 Comfort Pro for support arm (expandable, round tube) and extension unit: Siemens SIMATIC HMI MTP2200 Comfort Pro for support arm (not extendable, flange on top): Siemens SIMATIC HMI MTP2200 Comfort Pro neutral design for stand (expandable, flange at the bottom): Siemens SIMATIC HMI MTP2200 Comfort Pro neutral design for support arm (expandable, round tube) and extensio: Siemens SIMATIC HMI MTP2200 Comfort Pro neutral design for support arm (not extendable, flange on top): Siemens SIMATIC HMI MTP2200 Unified Comfort Hygienic: Siemens SIMATIC HMI MTP2200 Unified Comfort Hygienic neutral design: Siemens SIMATIC HMI MTP2200 Unified Comfort Panel: Siemens SIMATIC HMI MTP2200 Unified Comfort Panel neutral design: Siemens SIMATIC HMI MTP700 Unified Comfort Panel: Siemens SIMATIC HMI MTP700 Unified Comfort Panel hygienic neutral design: Siemens SIMATIC HMI MTP700 Unified Comfort Panel hygienic neutral design: Siemens SIMATIC HMI MTP700, Unified Comfort Panel neutral design: Siemens SIMATIC IOT2050: Siemens SIMATIC IPC BX-39A Industrial Edge Device: Siemens SIMATIC IPC BX-59A Industrial Edge Device: Siemens SIMATIC IPC127E Industrial Edge Device: Siemens SIMATIC IPC227E Industrial Edge Device: Siemens SIMATIC IPC227G Industrial Edge Device: Siemens SIMATIC IPC427E Industrial Edge Device: Siemens SIMATIC IPC847E Industrial Edge Device: Siemens SIPLUS HMI MTP1000 Unified Comfort: Siemens SIPLUS HMI MTP1200 Unified Comfort: Siemens SIPLUS HMI MTP700 Unified Comfort:

Exploit Probability

EPSS
0.08%
Percentile
23.38%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.