7.5
CVE-2025-9230
- EPSS 1.74%
- Veröffentlicht 30.09.2025 14:15:41
- Zuletzt bearbeitet 02.06.2026 14:16:40
- Quelle openssl-security@openssl.org
- CVE-Watchlists
- Unerledigt
Out-of-bounds read & write in RFC 3211 KEK Unwrap
Issue summary: An application trying to decrypt CMS messages encrypted using password based encryption can trigger an out-of-bounds read and write. Impact summary: This out-of-bounds read may trigger a crash which leads to Denial of Service for an application. The out-of-bounds write can cause a memory corruption which can have various consequences including a Denial of Service or Execution of attacker-supplied code. Although the consequences of a successful exploit of this vulnerability could be severe, the probability that the attacker would be able to perform it is low. Besides, password based (PWRI) encryption support in CMS messages is very rarely used. For that reason the issue was assessed as Moderate severity according to our Security Policy. The FIPS modules in 3.5, 3.4, 3.3, 3.2, 3.1 and 3.0 are not affected by this issue, as the CMS implementation is outside the OpenSSL FIPS module boundary.
Daten sind bereitgestellt durch das CVE Programm von Authorized Data Publishers (ADP) (Unstrukturiert)
HerstellerSiemens
≫
Produkt
RUGGEDCOM RST2428P
Default Statusunknown
Version
0
Version <
V3.3
Status
affected
HerstellerSiemens
≫
Produkt
RUGGEDCOM RST2428P
Default Statusunknown
Version
0
Version <
V4.0
Status
affected
HerstellerSiemens
≫
Produkt
SCALANCE XC-300/XR-300/XC-400/XR-500WG/XR-500 family
Default Statusunknown
Version
0
Version <
V3.3
Status
affected
HerstellerSiemens
≫
Produkt
SCALANCE XCH328
Default Statusunknown
Version
0
Version <
V3.3
Status
affected
HerstellerSiemens
≫
Produkt
SCALANCE XCM324
Default Statusunknown
Version
0
Version <
V3.3
Status
affected
HerstellerSiemens
≫
Produkt
SCALANCE XCM328
Default Statusunknown
Version
0
Version <
V3.3
Status
affected
HerstellerSiemens
≫
Produkt
SCALANCE XCM332
Default Statusunknown
Version
0
Version <
V3.3
Status
affected
HerstellerSiemens
≫
Produkt
SCALANCE XRH334 (24 V DC, 8xFO, CC)
Default Statusunknown
Version
0
Version <
V3.3
Status
affected
HerstellerSiemens
≫
Produkt
SCALANCE XRM334 (230 V AC, 12xFO)
Default Statusunknown
Version
0
Version <
V3.3
Status
affected
HerstellerSiemens
≫
Produkt
SCALANCE XRM334 (230 V AC, 8xFO)
Default Statusunknown
Version
0
Version <
V3.3
Status
affected
HerstellerSiemens
≫
Produkt
SCALANCE XRM334 (230V AC, 2x10G, 24xSFP, 8xSFP+)
Default Statusunknown
Version
0
Version <
V3.3
Status
affected
HerstellerSiemens
≫
Produkt
SCALANCE XRM334 (24 V DC, 12xFO)
Default Statusunknown
Version
0
Version <
V3.3
Status
affected
HerstellerSiemens
≫
Produkt
SCALANCE XRM334 (24 V DC, 8xFO)
Default Statusunknown
Version
0
Version <
V3.3
Status
affected
HerstellerSiemens
≫
Produkt
SCALANCE XRM334 (24V DC, 2x10G, 24xSFP, 8xSFP+)
Default Statusunknown
Version
0
Version <
V3.3
Status
affected
HerstellerSiemens
≫
Produkt
SCALANCE XRM334 (2x230 V AC, 12xFO)
Default Statusunknown
Version
0
Version <
V3.3
Status
affected
HerstellerSiemens
≫
Produkt
SCALANCE XRM334 (2x230 V AC, 8xFO)
Default Statusunknown
Version
0
Version <
V3.3
Status
affected
HerstellerSiemens
≫
Produkt
SCALANCE XRM334 (2x230V AC, 2x10G, 24xSFP, 8xSFP+)
Default Statusunknown
Version
0
Version <
V3.3
Status
affected
HerstellerSiemens
≫
Produkt
SIDIS Prime
Default Statusunknown
Version
0
Version <
V4.0.800
Status
affected
HerstellerSiemens
≫
Produkt
SIMATIC CN 4100
Default Statusunknown
Version
0
Version <
V5.0
Status
affected
HerstellerSiemens
≫
Produkt
SIMATIC S7-1500 CPU 1518-4 PN/DP MFP
Default Statusunknown
Version
V3.1.5
Version <
*
Status
affected
HerstellerSiemens
≫
Produkt
SIMATIC S7-1500 CPU 1518-4 PN/DP MFP
Default Statusunknown
Version
V3.1.5
Version <
*
Status
affected
HerstellerSiemens
≫
Produkt
SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP
Default Statusunknown
Version
V3.1.5
Version <
*
Status
affected
HerstellerSiemens
≫
Produkt
SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP
Default Statusunknown
Version
V3.1.5
Version <
*
Status
affected
HerstellerSiemens
≫
Produkt
SIMATIC S7-1500 TM MFP - GNU/Linux subsystem
Default Statusunknown
Version
0
Version <
*
Status
affected
HerstellerSiemens
≫
Produkt
SIPLUS S7-1500 CPU 1518-4 PN/DP MFP
Default Statusunknown
Version
V3.1.5
Version <
*
Status
affected
VulnDex Vulnerability Enrichment
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.74% | 0.749 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| 134c704f-9b21-4f2e-91b3-4a467353bcc0 | 7.5 | 3.9 | 3.6 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
|
CWE-125 Out-of-bounds Read
The product reads data past the end, or before the beginning, of the intended buffer.
CWE-787 Out-of-bounds Write
The product writes data past the end, or before the beginning, of the intended buffer.
Für Zugriff zu Vulnerability Intelligence ist ein VulnDex Zugang erforderlich.
https://github.com/openssl/openssl/commit/5965ea5dd6960f36d8b7f74f8eac67a8eb8f2b45
https://github.com/openssl/openssl/commit/9e91358f365dee6c446dcdcdb01c04d2743fd280
https://github.com/openssl/openssl/commit/a79c4ce559c6a3a8fd4109e9f33c1185d5bf2def
https://github.com/openssl/openssl/commit/b5282d677551afda7d20e9c00e09561b547b2dfd
https://github.com/openssl/openssl/commit/bae259a211ada6315dc50900686daaaaaa55f482
https://github.openssl.org/openssl/extended-releases/commit/c2b96348bfa662f25f4fabf81958ae822063dae3
https://github.openssl.org/openssl/extended-releases/commit/dfbaf161d8dafc1132dd88cd48ad990ed9b4c8ba
https://openssl-library.org/news/secadv/20250930.txt
https://lists.debian.org/debian-lts-announce/2025/10/msg00001.html
http://www.openwall.com/lists/oss-security/2025/09/30/5
https://cert-portal.siemens.com/productcert/html/ssa-485750.html
https://cert-portal.siemens.com/productcert/html/ssa-032379.html
https://cert-portal.siemens.com/productcert/html/ssa-265688.html
https://cert-portal.siemens.com/productcert/html/ssa-082556.html
https://cert-portal.siemens.com/productcert/html/ssa-089022.html
https://cert-portal.siemens.com/productcert/html/ssa-253495.html