How to fix EUVD-2025-200033?

Within 24 hours: Identify and inventory all DIRIS M-70 devices running version 1.6.9 on your network; implement network segmentation to restrict Modbus TCP port 502 access to authorized systems only. Within 7 days: Deploy network-level controls (firewall rules, WAF) to block Modbus Write Single Register function code (6) messages to register 4352, or disable Modbus TCP if operationally feasible; establish monitoring for suspicious Modbus traffic patterns. Within 30 days: Contact Socomec for patch availability and upgrade timeline; evaluate alternative devices or architectural controls if patches remain unavailable; conduct post-incident review of monitoring gaps that prevented earlier detection.

Is Diris Digiware M 70 Firmware affected by EUVD-2025-200033?

A remotely exploitable denial-of-service vulnerability affecting Socomec DIRIS Digiware M-70 devices (version 1.6.9) allows unauthenticated attackers to crash critical power monitoring and measurement infrastructure with a single network packet.

EUVD-2025-200033

| CVE-2025-54849 HIGH

2025-12-01 [email protected]

Authentication Bypass Denial Of Service Diris Digiware M 70 Firmware

7.5

CVSS 3.1

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

None

Integrity

None

Availability

High

Lifecycle Timeline

EUVD ID Assigned

Mar 15, 2026 - 13:34 euvd

EUVD-2025-200033

Analysis Generated

Mar 15, 2026 - 13:34 vuln.today

CVE Published

Dec 01, 2025 - 16:15 nvd

HIGH 7.5

DescriptionNVD

A denial of service vulnerability exists in the Modbus TCP and Modbus RTU over TCP functionality of Socomec DIRIS Digiware M-70 1.6.9. A specially crafted series of network requests can lead to a denial of service. An attacker can send a sequence of unauthenticated packets to trigger this vulnerability.An attacker can trigger this denial-of-service condition by sending a single Modbus TCP message to port 502 using the Write Single Register function code (6) to write the value 1 to register 4352. This action changes the Modbus address to 15. After this message is sent, the device will be in a denial-of-service state.

AnalysisAI

Technical ContextAI

An authentication bypass vulnerability allows attackers to circumvent login mechanisms and gain unauthorized access without valid credentials. This vulnerability is classified as Missing Authentication for Critical Function (CWE-306).

RemediationAI

Implement robust authentication mechanisms. Use multi-factor authentication. Review authentication logic for bypass conditions. Remove default credentials.

EUVD-2025-200033 vulnerability details – vuln.today

Back

EUVD-2025-200033

CVSS VectorNVD

Lifecycle Timeline

DescriptionNVD

AnalysisAI

Technical ContextAI

RemediationAI

Share

External POC / Exploit Code