How to fix CVE-2025-20085?

Within 24 hours: Identify and inventory all Socomec DIRIS Digiware M-70 devices running version 1.6.9 in your environment and restrict network access to these devices. Within 7 days: Implement network segmentation to isolate affected devices, change all default credentials immediately, and establish monitoring for suspicious Modbus RTU over TCP traffic. Within 30 days: Contact Socomec for patch availability and timeline, evaluate firmware upgrade paths, and consider replacement or decommissioning of devices if patches remain unavailable beyond 90 days.

Is Diris M 70 Firmware affected by CVE-2025-20085?

Socomec DIRIS Digiware M-70 devices (version 1.6.9) are vulnerable to remote denial of service attacks that can also reset devices to default credentials, enabling unauthorized access.

CVE-2025-20085

EUVD-2025-200028 HIGH

2025-12-01 [email protected]

7.2

CVSS 3.1

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Changed

Confidentiality

Low

Integrity

Low

Availability

None

Lifecycle Timeline

EUVD ID Assigned

Mar 15, 2026 - 13:34 euvd

EUVD-2025-200028

Analysis Generated

Mar 15, 2026 - 13:34 vuln.today

CVE Published

Dec 01, 2025 - 16:15 nvd

HIGH 7.2

Description

A denial of service vulnerability exists in the Modbus RTU over TCP functionality of Socomec DIRIS Digiware M-70 1.6.9. A specially crafted network packet can lead to denial of service and weaken credentials resulting in default documented credentials being applied to the device. An attacker can send an unauthenticated packet to trigger this vulnerability.

Analysis

Technical Context

An authentication bypass vulnerability allows attackers to circumvent login mechanisms and gain unauthorized access without valid credentials. This vulnerability is classified as Missing Authentication for Critical Function (CWE-306).

Affected Products

Affected products: Socomec Diris M-70 Firmware 1.6.9

Remediation

Implement robust authentication mechanisms. Use multi-factor authentication. Review authentication logic for bypass conditions. Remove default credentials.

Priority Score

Low Medium High Critical

KEV: 0

EPSS: +0.0

CVSS: +36

POC: 0

CVE-2025-20085 vulnerability details – vuln.today

Back

CVE-2025-20085

CVSS Vector

Lifecycle Timeline

Tags

Description

Analysis

Technical Context

Affected Products

Remediation

Priority Score

Share

CVE-2025-20085

CVSS Vector

Lifecycle Timeline

Tags

Description

Analysis

Technical Context

Affected Products

Remediation

Priority Score

Share

External POC / Exploit Code