CVE-2025-55221

A denial of service vulnerability exists in the Modbus TCP and Modbus RTU over TCP USB Function functionality of Socomec DIRIS Digiware M-70 1.6.9. A specially crafted network packet can lead to a denial of service. An attacker can send an unauthenticated packet to trigger this vulnerability.This vulnerability is specific to the malicious message sent via Modbus TCP over port 502.

CVSS v3 8.6 HIGH

8.6^/10

CVSS v3 : HIGH

Vector :

Exploitability : 3.9 / Impact : 4.0

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope CHANGED

References

Link	Resource
https://talosintelligence.com/vulnerability_reports/TALOS-2025-2251	Vendor Advisory

Configurations

Configuration 1 (hide)

AND

cpe:2.3:o:socomec:diris_m-70_firmware:1.6.9:*:*:*:*:*:*:*

cpe:2.3:h:socomec:diris_m-70:-:*:*:*:*:*:*:*

History

05 Dec 2025, 20:47

Type	Values Removed	Values Added
First Time		Socomec diris M-70 Firmware Socomec diris M-70 Socomec
References	~~() https://talosintelligence.com/vulnerability_reports/TALOS-2025-2251 -~~	() https://talosintelligence.com/vulnerability_reports/TALOS-2025-2251 - Vendor Advisory
CPE		cpe:2.3:o:socomec:diris_m-70_firmware:1.6.9:::::::* cpe:2.3:h:socomec:diris_m-70:-:::::::*

01 Dec 2025, 16:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2025-12-01 16:15

Updated : 2025-12-05 20:47

NVD link : CVE-2025-55221

Mitre link : CVE-2025-55221

CVE.ORG link : CVE-2025-55221

JSON object : View

Products Affected

socomec

diris_m-70
diris_m-70_firmware

CWE

CWE-306

Missing Authentication for Critical Function

{"id": "CVE-2025-55221", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "talos-cna@cisco.com", "cvssData": {"scope": "CHANGED", "version": "3.1", "baseScore": 8.6, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 4.0, "exploitabilityScore": 3.9}, {"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.5, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 3.9}]}, "published": "2025-12-01T16:15:54.443", "references": [{"url": "https://talosintelligence.com/vulnerability_reports/TALOS-2025-2251", "tags": ["Vendor Advisory"], "source": "talos-cna@cisco.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "talos-cna@cisco.com", "description": [{"lang": "en", "value": "CWE-306"}]}], "descriptions": [{"lang": "en", "value": "A denial of service vulnerability exists in the Modbus TCP and Modbus RTU over TCP USB Function functionality of Socomec DIRIS Digiware M-70 1.6.9. A specially crafted network packet can lead to a denial of service. An attacker can send an unauthenticated packet to trigger this vulnerability.This vulnerability is specific to the malicious message sent via Modbus TCP over port 502."}], "lastModified": "2025-12-05T20:47:43.500", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:socomec:diris_m-70_firmware:1.6.9:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C07608BE-E7E3-44F5-AE9A-4AE36679F58A"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:socomec:diris_m-70:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "153A9D26-2C76-4B6B-AFD8-22DEB2081F34"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "talos-cna@cisco.com"}