A denial of service vulnerability exists in the Modbus TCP and Modbus RTU over TCP functionality of Socomec DIRIS Digiware M-70 1.6.9. A specially crafted series of network requests can lead to a denial of service. An attacker can send a sequence of unauthenticated packets to trigger this vulnerability.An attacker can trigger this denial-of-service condition by sending a single Modbus TCP message to port 502 using the Write Single Register function code (6) to write the value 1 to register 4352. This action changes the Modbus address to 15. After this message is sent, the device will be in a denial-of-service state.
References
| Link | Resource |
|---|---|
| https://talosintelligence.com/vulnerability_reports/TALOS-2025-2248 | Vendor Advisory |
Configurations
Configuration 1 (hide)
| AND |
|
History
08 Dec 2025, 19:23
| Type | Values Removed | Values Added |
|---|---|---|
| First Time |
Socomec diris Digiware M-70 Firmware
Socomec diris Digiware M-70 Socomec |
|
| References | () https://talosintelligence.com/vulnerability_reports/TALOS-2025-2248 - Vendor Advisory | |
| CPE | cpe:2.3:h:socomec:diris_digiware_m-70:-:*:*:*:*:*:*:* cpe:2.3:o:socomec:diris_digiware_m-70_firmware:1.6.9:*:*:*:*:*:*:* |
01 Dec 2025, 16:15
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2025-12-01 16:15
Updated : 2025-12-08 19:23
NVD link : CVE-2025-54849
Mitre link : CVE-2025-54849
CVE.ORG link : CVE-2025-54849
JSON object : View
Products Affected
socomec
- diris_digiware_m-70
- diris_digiware_m-70_firmware
CWE
CWE-306
Missing Authentication for Critical Function