OTPulse
FeedAboutContact

Out of Bounds Read Vulnerability in SiPass Integrated Before V2.95.3.18

Plan Patch7.5SSA-041082May 23, 2025
Attack VectorNetwork
Auth RequiredNone
ComplexityLow
User InteractionNone needed
Summary

SiPass integrated versions before V2.95.3.18 contain an out of bounds read vulnerability in the request parsing logic. An unauthenticated remote attacker can send a crafted network packet to trigger a denial of service condition, crashing or freezing the access control service and preventing legitimate personnel from accessing secured areas.

What this means
What could happen
An attacker can send a specially crafted network request to SiPass integrated to trigger a denial of service, causing the access control system to become unavailable and potentially preventing legitimate entry to secured areas.
Who's at risk
Facilities and municipalities using Siemens SiPass integrated for physical access control, including water utilities, electric utilities, and other infrastructure operators who rely on the system to manage building entry and badging.
How it could be exploited
An attacker on the network sends a malformed request to the SiPass integrated service listening on the network. The out of bounds read in the request parser crashes the process or causes it to become unresponsive, denying service to legitimate users and preventing the system from processing access requests.
Prerequisites
  • Network access to the SiPass integrated service (typically port 139 or HTTP port)
  • No credentials required
remotely exploitableno authentication requiredlow complexityhigh availability impactaccess control disruption
Exploitability
Low exploit probability (EPSS 0.4%)
Affected products (1)
ProductAffected VersionsFix Status
SiPass integrated< V2.95.3.182.95.3.18
Remediation & Mitigation
0/1
Schedule — requires maintenance window
0/1

Patching may require device reboot — plan for process interruption

HOTFIXUpdate SiPass integrated to version 2.95.3.18 or later
View full Siemens ProductCERT advisory
↑↓ Navigate · Esc Close
API: /api/v1/advisories/73d34bab-133f-4a5c-bae8-3e34c7de0ae2
Out of Bounds Read Vulnerability in SiPass Integrated Before V2.95.3.18 | CVSS 7.5 - OTPulse