Privilege Escalation Vulnerability in SINAMICS Drives

Monitor6.3SSA-027652Sep 9, 2025

Attack VectorLocal

Auth RequiredNone

ComplexityHigh

User InteractionRequired

Summary

SINAMICS G220, S200, and S210 variable frequency drives contain a privilege escalation vulnerability in firmware version 6.4 that allows users with access to the drive engineering interface to escalate to administrative privileges. This could permit unauthorized modification of drive parameters, motor control setpoints, and safety configurations. Siemens has released firmware hotfixes: V6.4 HF2 for G220 and S210, and V6.4 HF7 for S200.

What this means

What could happen

An attacker with local access to the engineering interface could escalate to higher privilege levels, potentially allowing them to modify drive parameters, disable safety interlocks, or alter motor control setpoints without authorization.

Who's at risk

This affects industrial facilities using Siemens SINAMICS variable frequency drives (VFDs) for motor control in manufacturing, water treatment, HVAC, and conveyor systems. Anyone with user-level access to the engineering interface of affected G220, S200, or S210 drives is at risk of privilege escalation.

How it could be exploited

An attacker with user-level access to the SINAMICS drive engineering interface (either locally at the engineering workstation or via remote access to it) could exploit this privilege escalation vulnerability to gain administrative control over the drive. This would allow them to modify critical parameters including speed setpoints, torque limits, or safety configurations.

Prerequisites

Local or remote access to the SINAMICS drive engineering interface
User-level credentials or ability to interact with the engineering UI
Affected firmware version installed (G220 < V6.4 HF2, S200 < V6.4 HF7, S210 < V6.4 HF2)

Local or remote exploitation possible via engineering interfaceLow complexity attackDefault or weak credentials could enable accessAffects motor control and drive operation

Exploitability

Low exploit probability (EPSS 0.0%)

Affected products (3)

3 with fix

ProductAffected VersionsFix Status

SINAMICS G220 V6.4All versions < V6.4 HF26.4 HF2

SINAMICS S200 V6.4All versions < V6.4 HF76.4 HF7

SINAMICS S210 V6.4All versions < V6.4 HF26.4 HF2

Remediation & Mitigation

0/4

Do now

0/1

HARDENINGRestrict local and remote access to drive engineering interfaces to authorized personnel only

Schedule — requires maintenance window

0/3

Patching may require device reboot — plan for process interruption

HOTFIXUpdate SINAMICS G220 to firmware version V6.4 HF2 or later

HOTFIXUpdate SINAMICS S200 to firmware version V6.4 HF7 or later

HOTFIXUpdate SINAMICS S210 to firmware version V6.4 HF2 or later

CVEs (1)

CVE-2025-40594

View full Siemens ProductCERT advisory

↑↓ Navigate · Esc Close

API: /api/v1/advisories/1fc62375-e619-4922-99d8-26a9818ef9b7