CVE-2025-54851

A denial of service vulnerability exists in the Modbus TCP and Modbus RTU over TCP functionality of Socomec DIRIS Digiware M-70 1.6.9. A specially crafted series of network requests can lead to a denial of service. An attacker can send a sequence of unauthenticated packets to trigger this vulnerability.An attacker can trigger this denial-of-service condition by sending a single Modbus TCP message to port 503 using the Write Single Register function code (6) to write the value 1 to register 4352. This action changes the Modbus address to 15. After this message is sent, the device will be in a denial-of-service state.

CVSS v3 7.5 HIGH

7.5^/10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 3.9 / Impact : 3.6

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://talosintelligence.com/vulnerability_reports/TALOS-2025-2248	Vendor Advisory

Configurations

Configuration 1 (hide)

AND

cpe:2.3:o:socomec:diris_m-70_firmware:1.6.9:*:*:*:*:*:*:*

cpe:2.3:h:socomec:diris_m-70:-:*:*:*:*:*:*:*

History

05 Dec 2025, 20:47

Type	Values Removed	Values Added
References	~~() https://talosintelligence.com/vulnerability_reports/TALOS-2025-2248 -~~	() https://talosintelligence.com/vulnerability_reports/TALOS-2025-2248 - Vendor Advisory
CPE		cpe:2.3:o:socomec:diris_m-70_firmware:1.6.9:::::::* cpe:2.3:h:socomec:diris_m-70:-:::::::*
First Time		Socomec diris M-70 Firmware Socomec diris M-70 Socomec

01 Dec 2025, 16:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2025-12-01 16:15

Updated : 2025-12-05 20:47

NVD link : CVE-2025-54851

Mitre link : CVE-2025-54851

CVE.ORG link : CVE-2025-54851

JSON object : View

Products Affected

socomec

diris_m-70
diris_m-70_firmware

CWE

CWE-306

Missing Authentication for Critical Function

7.5 /10