Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2026-22923 (GCVE-0-2026-22923)
Vulnerability from cvelistv5 – Published: 2026-02-10 09:58 – Updated: 2026-03-10 16:07
VLAI
EPSS
Summary
A vulnerability has been identified in NX (All versions < V2512), NX (Managed Mode) (All versions < V2512). The affected application contains a data validation vulnerability that could allow an attacker with local access to interfere with internal data during the PDF export process that could potentially lead to arbitrary code execution.
Severity
SSVC
Exploitation: none
Automatable: no
Technical Impact: total
CISA Coordinator (v2.0.3)
CWE
- CWE-121 - Stack-based Buffer Overflow
Assigner
References
1 reference
Impacted products
2 products
| Vendor | Product | Version | |
|---|---|---|---|
| Siemens | NX |
Affected:
0 , < V2512
(custom)
|
|
| Siemens | NX (Managed Mode) |
Affected:
0 , < V2512
(custom)
|
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2026-22923",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "total"
}
],
"role": "CISA Coordinator",
"timestamp": "2026-02-10T19:53:34.581103Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2026-02-10T19:53:42.229Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unknown",
"product": "NX",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V2512",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "NX (Managed Mode)",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V2512",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "A vulnerability has been identified in NX (All versions \u003c V2512), NX (Managed Mode) (All versions \u003c V2512). The affected application contains a data validation vulnerability that could allow an attacker with local access to interfere with internal data during the PDF export process that could potentially lead to arbitrary code execution."
}
],
"metrics": [
{
"cvssV3_1": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
}
},
{
"cvssV4_0": {
"baseScore": 7.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:4.0/AV:L/AC:H/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",
"version": "4.0"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-121",
"description": "CWE-121: Stack-based Buffer Overflow",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-03-10T16:07:51.795Z",
"orgId": "cec7a2ec-15b4-4faf-bd53-b40f371f3a77",
"shortName": "siemens"
},
"references": [
{
"url": "https://cert-portal.siemens.com/productcert/html/ssa-535115.html"
}
]
}
},
"cveMetadata": {
"assignerOrgId": "cec7a2ec-15b4-4faf-bd53-b40f371f3a77",
"assignerShortName": "siemens",
"cveId": "CVE-2026-22923",
"datePublished": "2026-02-10T09:58:45.403Z",
"dateReserved": "2026-01-13T15:21:45.768Z",
"dateUpdated": "2026-03-10T16:07:51.795Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2026-22923",
"date": "2026-06-14",
"epss": "9e-05",
"percentile": "0.01079"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2026-22923\",\"sourceIdentifier\":\"productcert@siemens.com\",\"published\":\"2026-02-10T10:15:58.050\",\"lastModified\":\"2026-03-10T18:18:13.233\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"A vulnerability has been identified in NX (All versions \u003c V2512), NX (Managed Mode) (All versions \u003c V2512). The affected application contains a data validation vulnerability that could allow an attacker with local access to interfere with internal data during the PDF export process that could potentially lead to arbitrary code execution.\"},{\"lang\":\"es\",\"value\":\"Una vulnerabilidad ha sido identificada en NX (Todas las versiones \u0026lt; V2512). La aplicaci\u00f3n afectada contiene una vulnerabilidad de validaci\u00f3n de datos que podr\u00eda permitir a un atacante con acceso local interferir con datos internos durante el proceso de exportaci\u00f3n de PDF, lo que podr\u00eda llevar potencialmente a la ejecuci\u00f3n de c\u00f3digo arbitrario.\"}],\"metrics\":{\"cvssMetricV40\":[{\"source\":\"productcert@siemens.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"4.0\",\"vectorString\":\"CVSS:4.0/AV:L/AC:H/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X\",\"baseScore\":7.3,\"baseSeverity\":\"HIGH\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"HIGH\",\"attackRequirements\":\"NONE\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"PASSIVE\",\"vulnConfidentialityImpact\":\"HIGH\",\"vulnIntegrityImpact\":\"HIGH\",\"vulnAvailabilityImpact\":\"HIGH\",\"subConfidentialityImpact\":\"NONE\",\"subIntegrityImpact\":\"NONE\",\"subAvailabilityImpact\":\"NONE\",\"exploitMaturity\":\"NOT_DEFINED\",\"confidentialityRequirement\":\"NOT_DEFINED\",\"integrityRequirement\":\"NOT_DEFINED\",\"availabilityRequirement\":\"NOT_DEFINED\",\"modifiedAttackVector\":\"NOT_DEFINED\",\"modifiedAttackComplexity\":\"NOT_DEFINED\",\"modifiedAttackRequirements\":\"NOT_DEFINED\",\"modifiedPrivilegesRequired\":\"NOT_DEFINED\",\"modifiedUserInteraction\":\"NOT_DEFINED\",\"modifiedVulnConfidentialityImpact\":\"NOT_DEFINED\",\"modifiedVulnIntegrityImpact\":\"NOT_DEFINED\",\"modifiedVulnAvailabilityImpact\":\"NOT_DEFINED\",\"modifiedSubConfidentialityImpact\":\"NOT_DEFINED\",\"modifiedSubIntegrityImpact\":\"NOT_DEFINED\",\"modifiedSubAvailabilityImpact\":\"NOT_DEFINED\",\"Safety\":\"NOT_DEFINED\",\"Automatable\":\"NOT_DEFINED\",\"Recovery\":\"NOT_DEFINED\",\"valueDensity\":\"NOT_DEFINED\",\"vulnerabilityResponseEffort\":\"NOT_DEFINED\",\"providerUrgency\":\"NOT_DEFINED\"}}],\"cvssMetricV31\":[{\"source\":\"productcert@siemens.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\",\"baseScore\":7.8,\"baseSeverity\":\"HIGH\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"REQUIRED\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.8,\"impactScore\":5.9}]},\"weaknesses\":[{\"source\":\"productcert@siemens.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-121\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:siemens:nx:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"2512.0\",\"matchCriteriaId\":\"31B0C57C-0518-44B8-AEFD-8B04DF04F607\"}]}]}],\"references\":[{\"url\":\"https://cert-portal.siemens.com/productcert/html/ssa-535115.html\",\"source\":\"productcert@siemens.com\",\"tags\":[\"Vendor Advisory\"]}]}}",
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2026-22923\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"total\"}], \"version\": \"2.0.3\", \"timestamp\": \"2026-02-10T19:53:34.581103Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2026-02-10T19:53:39.435Z\"}}], \"cna\": {\"metrics\": [{\"cvssV3_1\": {\"version\": \"3.1\", \"baseScore\": 7.8, \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\"}}, {\"cvssV4_0\": {\"version\": \"4.0\", \"baseScore\": 7.3, \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:4.0/AV:L/AC:H/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N\"}}], \"affected\": [{\"vendor\": \"Siemens\", \"product\": \"NX\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V2512\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"NX (Managed Mode)\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V2512\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}], \"references\": [{\"url\": \"https://cert-portal.siemens.com/productcert/html/ssa-535115.html\"}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"A vulnerability has been identified in NX (All versions \u003c V2512), NX (Managed Mode) (All versions \u003c V2512). The affected application contains a data validation vulnerability that could allow an attacker with local access to interfere with internal data during the PDF export process that could potentially lead to arbitrary code execution.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-121\", \"description\": \"CWE-121: Stack-based Buffer Overflow\"}]}], \"providerMetadata\": {\"orgId\": \"cec7a2ec-15b4-4faf-bd53-b40f371f3a77\", \"shortName\": \"siemens\", \"dateUpdated\": \"2026-03-10T16:07:51.795Z\"}}}",
"cveMetadata": "{\"cveId\": \"CVE-2026-22923\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2026-03-10T16:07:51.795Z\", \"dateReserved\": \"2026-01-13T15:21:45.768Z\", \"assignerOrgId\": \"cec7a2ec-15b4-4faf-bd53-b40f371f3a77\", \"datePublished\": \"2026-02-10T09:58:45.403Z\", \"assignerShortName\": \"siemens\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
}
}
FKIE_CVE-2026-22923
Vulnerability from fkie_nvd - Published: 2026-02-10 10:15 - Updated: 2026-03-10 18:18
Severity
Summary
A vulnerability has been identified in NX (All versions < V2512), NX (Managed Mode) (All versions < V2512). The affected application contains a data validation vulnerability that could allow an attacker with local access to interfere with internal data during the PDF export process that could potentially lead to arbitrary code execution.
References
| URL | Tags | ||
|---|---|---|---|
| productcert@siemens.com | https://cert-portal.siemens.com/productcert/html/ssa-535115.html | Vendor Advisory |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:siemens:nx:*:*:*:*:*:*:*:*",
"matchCriteriaId": "31B0C57C-0518-44B8-AEFD-8B04DF04F607",
"versionEndExcluding": "2512.0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "A vulnerability has been identified in NX (All versions \u003c V2512), NX (Managed Mode) (All versions \u003c V2512). The affected application contains a data validation vulnerability that could allow an attacker with local access to interfere with internal data during the PDF export process that could potentially lead to arbitrary code execution."
},
{
"lang": "es",
"value": "Una vulnerabilidad ha sido identificada en NX (Todas las versiones \u0026lt; V2512). La aplicaci\u00f3n afectada contiene una vulnerabilidad de validaci\u00f3n de datos que podr\u00eda permitir a un atacante con acceso local interferir con datos internos durante el proceso de exportaci\u00f3n de PDF, lo que podr\u00eda llevar potencialmente a la ejecuci\u00f3n de c\u00f3digo arbitrario."
}
],
"id": "CVE-2026-22923",
"lastModified": "2026-03-10T18:18:13.233",
"metrics": {
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"exploitabilityScore": 1.8,
"impactScore": 5.9,
"source": "productcert@siemens.com",
"type": "Secondary"
}
],
"cvssMetricV40": [
{
"cvssData": {
"Automatable": "NOT_DEFINED",
"Recovery": "NOT_DEFINED",
"Safety": "NOT_DEFINED",
"attackComplexity": "HIGH",
"attackRequirements": "NONE",
"attackVector": "LOCAL",
"availabilityRequirement": "NOT_DEFINED",
"baseScore": 7.3,
"baseSeverity": "HIGH",
"confidentialityRequirement": "NOT_DEFINED",
"exploitMaturity": "NOT_DEFINED",
"integrityRequirement": "NOT_DEFINED",
"modifiedAttackComplexity": "NOT_DEFINED",
"modifiedAttackRequirements": "NOT_DEFINED",
"modifiedAttackVector": "NOT_DEFINED",
"modifiedPrivilegesRequired": "NOT_DEFINED",
"modifiedSubAvailabilityImpact": "NOT_DEFINED",
"modifiedSubConfidentialityImpact": "NOT_DEFINED",
"modifiedSubIntegrityImpact": "NOT_DEFINED",
"modifiedUserInteraction": "NOT_DEFINED",
"modifiedVulnAvailabilityImpact": "NOT_DEFINED",
"modifiedVulnConfidentialityImpact": "NOT_DEFINED",
"modifiedVulnIntegrityImpact": "NOT_DEFINED",
"privilegesRequired": "NONE",
"providerUrgency": "NOT_DEFINED",
"subAvailabilityImpact": "NONE",
"subConfidentialityImpact": "NONE",
"subIntegrityImpact": "NONE",
"userInteraction": "PASSIVE",
"valueDensity": "NOT_DEFINED",
"vectorString": "CVSS:4.0/AV:L/AC:H/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X",
"version": "4.0",
"vulnAvailabilityImpact": "HIGH",
"vulnConfidentialityImpact": "HIGH",
"vulnIntegrityImpact": "HIGH",
"vulnerabilityResponseEffort": "NOT_DEFINED"
},
"source": "productcert@siemens.com",
"type": "Secondary"
}
]
},
"published": "2026-02-10T10:15:58.050",
"references": [
{
"source": "productcert@siemens.com",
"tags": [
"Vendor Advisory"
],
"url": "https://cert-portal.siemens.com/productcert/html/ssa-535115.html"
}
],
"sourceIdentifier": "productcert@siemens.com",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-121"
}
],
"source": "productcert@siemens.com",
"type": "Secondary"
}
]
}
GHSA-WHVV-QQ52-JC5C
Vulnerability from github – Published: 2026-02-10 12:30 – Updated: 2026-02-10 12:30
VLAI
Details
A vulnerability has been identified in NX (All versions < V2512). The affected application contains a data validation vulnerability that could allow an attacker with local access to interfere with internal data during the PDF export process that could potentially lead to arbitrary code execution.
Severity
{
"affected": [],
"aliases": [
"CVE-2026-22923"
],
"database_specific": {
"cwe_ids": [
"CWE-121"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2026-02-10T10:15:58Z",
"severity": "HIGH"
},
"details": "A vulnerability has been identified in NX (All versions \u003c V2512). The affected application contains a data validation vulnerability that could allow an attacker with local access to interfere with internal data during the PDF export process that could potentially lead to arbitrary code execution.",
"id": "GHSA-whvv-qq52-jc5c",
"modified": "2026-02-10T12:30:27Z",
"published": "2026-02-10T12:30:27Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-22923"
},
{
"type": "WEB",
"url": "https://cert-portal.siemens.com/productcert/html/ssa-535115.html"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "CVSS:4.0/AV:L/AC:H/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X",
"type": "CVSS_V4"
}
]
}
ICSA-26-043-08
Vulnerability from csaf_cisa - Published: 2026-02-10 00:00 - Updated: 2026-03-12 06:00Summary
Siemens NX
Notes
Summary: Siemens NX is affected by missing data validation vulnerability that could allow an attacker with local access on a compromised system to interfere with internal data during the PDF export process that could potentially lead to arbitrary code execution.
Siemens has released a new version of NX which resolves the data tampering vulnerability.
General Recommendations: As a general security measure, Siemens strongly recommends to protect network access to devices with appropriate mechanisms. In order to operate the devices in a protected IT environment, Siemens recommends to configure the environment according to Siemens' operational guidelines for Industrial Security (Download: https://www.siemens.com/cert/operational-guidelines-industrial-security), and to follow the recommendations in the product manuals.
Additional information on Industrial Security by Siemens can be found at: https://www.siemens.com/industrialsecurity
Additional Resources: For further inquiries on security vulnerabilities in Siemens products and solutions, please contact the Siemens ProductCERT: https://www.siemens.com/cert/advisories
Terms of Use: The use of Siemens Security Advisories is subject to the terms and conditions listed on: https://www.siemens.com/productcert/terms-of-use.
Legal Notice and Terms of Use: This product is provided subject to this Notification (https://www.cisa.gov/notification) and this Privacy & Use policy (https://www.cisa.gov/privacy-policy).
Advisory Conversion Disclaimer: This ICSA is a verbatim republication of Siemens ProductCERT SSA-535115 from a direct conversion of the vendor's Common Security Advisory Framework (CSAF) advisory. This is republished to CISA's website as a means of increasing visibility and is provided "as-is" for informational purposes only. CISA is not responsible for the editorial or technical accuracy of republished advisories and provides no warranties of any kind regarding any information contained within this advisory. Further, CISA does not endorse any commercial product or service. Please contact Siemens ProductCERT directly for any questions regarding this advisory.
Critical infrastructure sectors: Critical Manufacturing
Countries/areas deployed: Worldwide
Company headquarters location: Germany
Recommended Practices: CISA recommends users take defensive measures to minimize the exploitation risk of these vulnerabilities.
Recommended Practices: Minimize network exposure for all control system devices and/or systems, and ensure they are not accessible from the internet.
Recommended Practices: Locate control system networks and remote devices behind firewalls and isolate them from business networks.
Recommended Practices: When remote access is required, use more secure methods, such as Virtual Private Networks (VPNs), recognizing VPNs may have vulnerabilities and should be updated to the most recent version available. Also recognize VPN is only as secure as its connected devices.
Recommended Practices: CISA reminds organizations to perform proper impact analysis and risk assessment prior to deploying defensive measures.
Recommended Practices: CISA also provides a section for control systems security recommended practices on the ICS webpage on cisa.gov. Several CISA products detailing cyber defense best practices are available for reading and download, including Improving Industrial Control Systems Cybersecurity with Defense-in-Depth Strategies.
Recommended Practices: CISA encourages organizations to implement recommended cybersecurity strategies for proactive defense of ICS assets. Additional mitigation guidance and recommended practices are publicly available on the ICS webpage at cisa.gov in the technical information paper, ICS-TIP-12-146-01B--Targeted Cyber Intrusion Detection and Mitigation Strategies.
Recommended Practices: Organizations observing suspected malicious activity should follow established internal procedures and report findings to CISA for tracking and correlation against other incidents.
7.8 (High)
6.7 (Medium)
References
14 references
Acknowledgments
Siemens ProductCERT
Michael Heinzl
{
"document": {
"acknowledgments": [
{
"organization": "Siemens ProductCERT",
"summary": "reported this vulnerability to CISA."
},
{
"names": [
"Michael Heinzl"
],
"summary": "reported this vulnerability to Siemens."
}
],
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Disclosure is not limited",
"tlp": {
"label": "WHITE",
"url": "https://www.cisa.gov/news-events/news/traffic-light-protocol-tlp-definitions-and-usage"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Siemens NX is affected by missing data validation vulnerability that could allow an attacker with local access on a compromised system to interfere with internal data during the PDF export process that could potentially lead to arbitrary code execution. \n\nSiemens has released a new version of NX which resolves the data tampering vulnerability.",
"title": "Summary"
},
{
"category": "general",
"text": "As a general security measure, Siemens strongly recommends to protect network access to devices with appropriate mechanisms. In order to operate the devices in a protected IT environment, Siemens recommends to configure the environment according to Siemens\u0027 operational guidelines for Industrial Security (Download: https://www.siemens.com/cert/operational-guidelines-industrial-security), and to follow the recommendations in the product manuals.\nAdditional information on Industrial Security by Siemens can be found at: https://www.siemens.com/industrialsecurity",
"title": "General Recommendations"
},
{
"category": "general",
"text": "For further inquiries on security vulnerabilities in Siemens products and solutions, please contact the Siemens ProductCERT: https://www.siemens.com/cert/advisories",
"title": "Additional Resources"
},
{
"category": "legal_disclaimer",
"text": "The use of Siemens Security Advisories is subject to the terms and conditions listed on: https://www.siemens.com/productcert/terms-of-use.",
"title": "Terms of Use"
},
{
"category": "legal_disclaimer",
"text": "This product is provided subject to this Notification (https://www.cisa.gov/notification) and this Privacy \u0026 Use policy (https://www.cisa.gov/privacy-policy).",
"title": "Legal Notice and Terms of Use"
},
{
"category": "other",
"text": "This ICSA is a verbatim republication of Siemens ProductCERT SSA-535115 from a direct conversion of the vendor\u0027s Common Security Advisory Framework (CSAF) advisory. This is republished to CISA\u0027s website as a means of increasing visibility and is provided \"as-is\" for informational purposes only. CISA is not responsible for the editorial or technical accuracy of republished advisories and provides no warranties of any kind regarding any information contained within this advisory. Further, CISA does not endorse any commercial product or service. Please contact Siemens ProductCERT directly for any questions regarding this advisory.",
"title": "Advisory Conversion Disclaimer"
},
{
"category": "other",
"text": "Critical Manufacturing",
"title": "Critical infrastructure sectors"
},
{
"category": "other",
"text": "Worldwide",
"title": "Countries/areas deployed"
},
{
"category": "other",
"text": "Germany",
"title": "Company headquarters location"
},
{
"category": "general",
"text": "CISA recommends users take defensive measures to minimize the exploitation risk of these vulnerabilities.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "Minimize network exposure for all control system devices and/or systems, and ensure they are not accessible from the internet.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "Locate control system networks and remote devices behind firewalls and isolate them from business networks.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "When remote access is required, use more secure methods, such as Virtual Private Networks (VPNs), recognizing VPNs may have vulnerabilities and should be updated to the most recent version available. Also recognize VPN is only as secure as its connected devices.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "CISA reminds organizations to perform proper impact analysis and risk assessment prior to deploying defensive measures.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "CISA also provides a section for control systems security recommended practices on the ICS webpage on cisa.gov. Several CISA products detailing cyber defense best practices are available for reading and download, including Improving Industrial Control Systems Cybersecurity with Defense-in-Depth Strategies.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "CISA encourages organizations to implement recommended cybersecurity strategies for proactive defense of ICS assets. Additional mitigation guidance and recommended practices are publicly available on the ICS webpage at cisa.gov in the technical information paper, ICS-TIP-12-146-01B--Targeted Cyber Intrusion Detection and Mitigation Strategies.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "Organizations observing suspected malicious activity should follow established internal procedures and report findings to CISA for tracking and correlation against other incidents.",
"title": "Recommended Practices"
}
],
"publisher": {
"category": "other",
"contact_details": "central@cisa.dhs.gov",
"name": "CISA",
"namespace": "https://www.cisa.gov/"
},
"references": [
{
"category": "self",
"summary": "SSA-535115: Data Validation Vulnerability in NX Before V2512 - CSAF Version",
"url": "https://cert-portal.siemens.com/productcert/csaf/ssa-535115.json"
},
{
"category": "self",
"summary": "SSA-535115: Data Validation Vulnerability in NX Before V2512 - HTML Version",
"url": "https://cert-portal.siemens.com/productcert/html/ssa-535115.html"
},
{
"category": "self",
"summary": "ICS Advisory ICSA-26-043-08 JSON",
"url": "https://raw.githubusercontent.com/cisagov/CSAF/develop/csaf_files/OT/white/2026/icsa-26-043-08.json"
},
{
"category": "self",
"summary": "ICS Advisory ICSA-26-043-08 - Web Version",
"url": "https://www.cisa.gov/news-events/ics-advisories/icsa-26-043-08"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://www.cisa.gov/news-events/ics-alerts/ics-alert-10-301-01"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://www.cisa.gov/resources-tools/resources/ics-recommended-practices"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://www.cisa.gov/topics/industrial-control-systems"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://www.cisa.gov/sites/default/files/recommended_practices/NCCIC_ICS-CERT_Defense_in_Depth_2016_S508C.pdf"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://www.cisa.gov/sites/default/files/publications/Cybersecurity_Best_Practices_for_Industrial_Control_Systems.pdf"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://www.cisa.gov/news-events/news/targeted-cyber-intrusion-detection-and-mitigation-strategies-update-b"
}
],
"title": "Siemens NX",
"tracking": {
"current_release_date": "2026-03-12T06:00:00.000000Z",
"generator": {
"date": "2026-03-11T21:23:48.798500Z",
"engine": {
"name": "CISA CSAF Generator",
"version": "1.5.0"
}
},
"id": "ICSA-26-043-08",
"initial_release_date": "2026-02-10T00:00:00.000000Z",
"revision_history": [
{
"date": "2026-02-10T00:00:00.000000Z",
"legacy_version": "Initial",
"number": "1",
"summary": "Publication Date"
},
{
"date": "2026-02-12T07:00:00.000000Z",
"legacy_version": "Additional Release 1",
"number": "2",
"summary": "CISA Republication - Initial CISA Republication of Siemens ProductCERT SSA-535115 advisory"
},
{
"date": "2026-03-10T00:00:00.000000Z",
"legacy_version": "Additional Release 2",
"number": "3",
"summary": "Added product-specific CVSS for NX with managed mode"
},
{
"date": "2026-03-12T06:00:00.000000Z",
"legacy_version": "Latest Updated CISA Republication",
"number": "4",
"summary": "CISA Republication update based on Siemens ProductCERT SSA-535115 advisory"
}
],
"status": "final",
"version": "4"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c2512",
"product": {
"name": "NX",
"product_id": "CSAFPID-0001"
}
}
],
"category": "product_name",
"name": "NX"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c2512",
"product": {
"name": "NX (Managed Mode)",
"product_id": "CSAFPID-0002"
}
}
],
"category": "product_name",
"name": "NX (Managed Mode)"
}
],
"category": "vendor",
"name": "Siemens"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-22923",
"cwe": {
"id": "CWE-121",
"name": "Stack-based Buffer Overflow"
},
"notes": [
{
"category": "summary",
"text": "The affected application contains a data validation vulnerability that could allow an attacker with local access to interfere with internal data during the PDF export process that could potentially lead to arbitrary code execution.",
"title": "Summary"
},
{
"category": "summary",
"text": "An attacker would need privileged access to the application running in managed mode in order to exploit",
"title": "For NX (Managed Mode)"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002"
]
},
"references": [
{
"category": "external",
"summary": "www.cve.org",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22923"
},
{
"category": "external",
"summary": "cwe.mitre.org",
"url": "https://cwe.mitre.org/data/definitions/121.html"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H"
}
],
"remediations": [
{
"category": "mitigation",
"details": "Prioritize strong overall system hygiene to prevent initial system infection which includes maintaining fully patched systems, robust endpoint security, and continuous monitoring for signs of compromise",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002"
]
},
{
"category": "vendor_fix",
"details": "Update to V2512 or later version",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002"
],
"url": "https://support.sw.siemens.com/product/209349590/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
},
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-0002"
]
}
],
"title": "CVE-2026-22923"
}
]
}
NCSC-2026-0051
Vulnerability from csaf_ncscnl - Published: 2026-02-10 12:27 - Updated: 2026-02-10 12:27Summary
Kwetsbaarheden verholpen in Siemens producten
Notes
The Netherlands Cyber Security Center (henceforth: NCSC-NL) maintains this page to enhance access to its information and security advisories. The use of this security advisory is subject to the following terms and conditions:
NCSC-NL makes every reasonable effort to ensure that the content of this page is kept up to date, and that it is accurate and complete. Nevertheless, NCSC-NL cannot entirely rule out the possibility of errors, and therefore cannot give any warranty in respect of its completeness, accuracy or continuous keeping up-to-date. The information contained in this security advisory is intended solely for the purpose of providing general information to professional users. No rights can be derived from the information provided therein.
NCSC-NL and the Kingdom of the Netherlands assume no legal liability or responsibility for any damage resulting from either the use or inability of use of this security advisory. This includes damage resulting from the inaccuracy of incompleteness of the information contained in the advisory.
This security advisory is subject to Dutch law. All disputes related to or arising from the use of this advisory will be submitted to the competent court in The Hague. This choice of means also applies to the court in summary proceedings.
Feiten: Siemens heeft kwetsbaarheden verholpen in diverse producten als Desigo, NX, Polarion, SENTRON, Simcenter, SINEC, SIPORT, Siveillance, Solid Edge,
Interpretaties: De kwetsbaarheden stellen een kwaadwillende mogelijk in staat aanvallen uit te voeren die kunnen leiden tot de volgende categorieën schade:
- Denial-of-Service (DoS)
- Manipulatie van gegevens
- Omzeilen van een beveiligingsmaatregel
- (Remote) code execution (root/admin rechten)
- Toegang tot systeemgegevens
- Verhogen van rechten
Van de SIPORT Desktop Client Application meldt Siemens dat deze verouderd is en niet voorzien van moderne beveiligingsmaatregelen. Siemens geeft aan deze ook niet meer in te bouwen en het onderhoud op de Desktop Client te stoppen. Siemens adviseert om over te schakelen naar de modernere web-management-omgeving. Wel heeft Siemens mitigerende maatregelen gepubliceerd in een Security Bulletin, om het risico zoveel als mogelijk te beperken tot de migratie is afgerond en de vaste Desktop Clients zijn uitgefaseerd.
Voor succesvol misbruik van de genoemde kwetsbaarheden moet de kwaadwillende toegang hebben tot de productie-omgeving. Het is goed gebruik een dergelijke omgeving niet publiek toegankelijk te hebben.
Oplossingen: Siemens heeft beveiligingsupdates uitgebracht om de kwetsbaarheden te verhelpen. Voor de kwetsbaarheden waar nog geen updates voor zijn, heeft Siemens mitigerende maatregelen gepubliceerd om de risico's zoveel als mogelijk te beperken. Zie de bijgevoegde referenties voor meer informatie.
Kans: medium
Schade: high
CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer
CWE-121: Stack-based Buffer Overflow
CWE-122: Heap-based Buffer Overflow
CWE-125: Out-of-bounds Read
CWE-427: Uncontrolled Search Path Element
CWE-787: Out-of-bounds Write
CWE-862: Missing Authorization
Recent updates across macOS, iOS, Oracle products, and Curl address multiple security vulnerabilities, including high-severity issues that could lead to remote code execution and data compromise.
9.8 (Critical)
Affected products
Known affected
41 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Siemens / Cpu 1518F-4 Pn/Dp Mfp Firmware
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Desigo CC family V6
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Desigo CC family V7
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Desigo CC family V8
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Desigo CC family V9
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / NX
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / PS/IGES Parasolid Translator Component
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Polarion V2404
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Polarion V2410
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / RUGGEDCOM APE1808
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SENTRON Powermanager V6
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SENTRON Powermanager V7
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SENTRON Powermanager V8
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SENTRON Powermanager V9
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager (6GT2780-0DA00)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager (6GT2780-0DA10)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager (6GT2780-0DA20)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager (6GT2780-0DA30)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager (6GT2780-1EA10)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager (6GT2780-1EA20)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager (6GT2780-1EA30)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SINEC NMS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SINEC Network Management System
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIPLUS S7-1500 CPU 1518-4 PN/DP MFP (6AG1518-4AX00-4AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Simcenter Femap
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Simcenter Nastran
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Siveillance Video V2022 R3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Siveillance Video V2023 R1
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Siveillance Video V2023 R2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Siveillance Video V2023 R3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Siveillance Video V2024 R1
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Siveillance Video V2025
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Solid Edge
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / User Management Component (UMC)
|
vers:unknown/* |
A vulnerability in Milestone Systems XProtect VMS allows users with read-only access to the Management Server to obtain full read/write access to the MIP Webhooks API.
6.3 (Medium)
Affected products
Known affected
41 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Siemens / Cpu 1518F-4 Pn/Dp Mfp Firmware
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Desigo CC family V6
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Desigo CC family V7
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Desigo CC family V8
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Desigo CC family V9
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / NX
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / PS/IGES Parasolid Translator Component
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Polarion V2404
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Polarion V2410
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / RUGGEDCOM APE1808
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SENTRON Powermanager V6
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SENTRON Powermanager V7
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SENTRON Powermanager V8
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SENTRON Powermanager V9
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager (6GT2780-0DA00)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager (6GT2780-0DA10)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager (6GT2780-0DA20)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager (6GT2780-0DA30)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager (6GT2780-1EA10)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager (6GT2780-1EA20)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager (6GT2780-1EA30)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SINEC NMS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SINEC Network Management System
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIPLUS S7-1500 CPU 1518-4 PN/DP MFP (6AG1518-4AX00-4AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Simcenter Femap
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Simcenter Nastran
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Siveillance Video V2022 R3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Siveillance Video V2023 R1
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Siveillance Video V2023 R2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Siveillance Video V2023 R3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Siveillance Video V2024 R1
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Siveillance Video V2025
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Solid Edge
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / User Management Component (UMC)
|
vers:unknown/* |
A vulnerability in Polarion versions prior to V2404.5 and V2410.2 allows authenticated remote attackers to execute stored cross-site scripting attacks via arbitrary JavaScript code in document titles.
7.6 (High)
Affected products
Known affected
41 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Siemens / Cpu 1518F-4 Pn/Dp Mfp Firmware
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Desigo CC family V6
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Desigo CC family V7
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Desigo CC family V8
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Desigo CC family V9
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / NX
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / PS/IGES Parasolid Translator Component
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Polarion V2404
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Polarion V2410
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / RUGGEDCOM APE1808
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SENTRON Powermanager V6
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SENTRON Powermanager V7
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SENTRON Powermanager V8
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SENTRON Powermanager V9
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager (6GT2780-0DA00)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager (6GT2780-0DA10)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager (6GT2780-0DA20)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager (6GT2780-0DA30)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager (6GT2780-1EA10)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager (6GT2780-1EA20)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager (6GT2780-1EA30)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SINEC NMS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SINEC Network Management System
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIPLUS S7-1500 CPU 1518-4 PN/DP MFP (6AG1518-4AX00-4AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Simcenter Femap
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Simcenter Nastran
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Siveillance Video V2022 R3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Siveillance Video V2023 R1
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Siveillance Video V2023 R2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Siveillance Video V2023 R3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Siveillance Video V2024 R1
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Siveillance Video V2025
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Solid Edge
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / User Management Component (UMC)
|
vers:unknown/* |
A vulnerability in the PS/IGES Parasolid Translator Component and Solid Edge allows for an out of bounds read when parsing specially crafted IGS files, potentially enabling application crashes or code execution.
7.8 (High)
Affected products
Known affected
41 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Siemens / Cpu 1518F-4 Pn/Dp Mfp Firmware
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Desigo CC family V6
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Desigo CC family V7
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Desigo CC family V8
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Desigo CC family V9
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / NX
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / PS/IGES Parasolid Translator Component
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Polarion V2404
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Polarion V2410
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / RUGGEDCOM APE1808
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SENTRON Powermanager V6
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SENTRON Powermanager V7
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SENTRON Powermanager V8
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SENTRON Powermanager V9
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager (6GT2780-0DA00)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager (6GT2780-0DA10)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager (6GT2780-0DA20)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager (6GT2780-0DA30)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager (6GT2780-1EA10)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager (6GT2780-1EA20)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager (6GT2780-1EA30)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SINEC NMS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SINEC Network Management System
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIPLUS S7-1500 CPU 1518-4 PN/DP MFP (6AG1518-4AX00-4AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Simcenter Femap
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Simcenter Nastran
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Siveillance Video V2022 R3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Siveillance Video V2023 R1
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Siveillance Video V2023 R2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Siveillance Video V2023 R3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Siveillance Video V2024 R1
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Siveillance Video V2025
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Solid Edge
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / User Management Component (UMC)
|
vers:unknown/* |
A data validation vulnerability in NX (versions < V2512) allows local attackers to manipulate internal data during PDF export, potentially leading to arbitrary code execution.
7.8 (High)
Affected products
Known affected
41 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Siemens / Cpu 1518F-4 Pn/Dp Mfp Firmware
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Desigo CC family V6
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Desigo CC family V7
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Desigo CC family V8
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Desigo CC family V9
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / NX
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / PS/IGES Parasolid Translator Component
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Polarion V2404
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Polarion V2410
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / RUGGEDCOM APE1808
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SENTRON Powermanager V6
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SENTRON Powermanager V7
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SENTRON Powermanager V8
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SENTRON Powermanager V9
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager (6GT2780-0DA00)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager (6GT2780-0DA10)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager (6GT2780-0DA20)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager (6GT2780-0DA30)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager (6GT2780-1EA10)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager (6GT2780-1EA20)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager (6GT2780-1EA30)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SINEC NMS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SINEC Network Management System
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIPLUS S7-1500 CPU 1518-4 PN/DP MFP (6AG1518-4AX00-4AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Simcenter Femap
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Simcenter Nastran
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Siveillance Video V2022 R3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Siveillance Video V2023 R1
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Siveillance Video V2023 R2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Siveillance Video V2023 R3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Siveillance Video V2024 R1
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Siveillance Video V2025
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Solid Edge
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / User Management Component (UMC)
|
vers:unknown/* |
A vulnerability in Simcenter Femap and Simcenter Nastran (versions < V2512) allows for an out of bounds write when parsing specially crafted XDB files, potentially enabling code execution by an attacker.
7.8 (High)
Affected products
Known affected
41 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Siemens / Cpu 1518F-4 Pn/Dp Mfp Firmware
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Desigo CC family V6
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Desigo CC family V7
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Desigo CC family V8
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Desigo CC family V9
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / NX
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / PS/IGES Parasolid Translator Component
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Polarion V2404
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Polarion V2410
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / RUGGEDCOM APE1808
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SENTRON Powermanager V6
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SENTRON Powermanager V7
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SENTRON Powermanager V8
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SENTRON Powermanager V9
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager (6GT2780-0DA00)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager (6GT2780-0DA10)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager (6GT2780-0DA20)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager (6GT2780-0DA30)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager (6GT2780-1EA10)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager (6GT2780-1EA20)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager (6GT2780-1EA30)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SINEC NMS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SINEC Network Management System
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIPLUS S7-1500 CPU 1518-4 PN/DP MFP (6AG1518-4AX00-4AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Simcenter Femap
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Simcenter Nastran
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Siveillance Video V2022 R3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Siveillance Video V2023 R1
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Siveillance Video V2023 R2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Siveillance Video V2023 R3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Siveillance Video V2024 R1
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Siveillance Video V2025
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Solid Edge
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / User Management Component (UMC)
|
vers:unknown/* |
A vulnerability in Simcenter Femap and Simcenter Nastran (versions < V2512) allows code execution due to an out of bounds read when parsing specially crafted XDB files.
7.8 (High)
Affected products
Known affected
41 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Siemens / Cpu 1518F-4 Pn/Dp Mfp Firmware
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Desigo CC family V6
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Desigo CC family V7
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Desigo CC family V8
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Desigo CC family V9
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / NX
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / PS/IGES Parasolid Translator Component
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Polarion V2404
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Polarion V2410
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / RUGGEDCOM APE1808
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SENTRON Powermanager V6
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SENTRON Powermanager V7
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SENTRON Powermanager V8
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SENTRON Powermanager V9
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager (6GT2780-0DA00)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager (6GT2780-0DA10)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager (6GT2780-0DA20)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager (6GT2780-0DA30)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager (6GT2780-1EA10)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager (6GT2780-1EA20)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager (6GT2780-1EA30)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SINEC NMS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SINEC Network Management System
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIPLUS S7-1500 CPU 1518-4 PN/DP MFP (6AG1518-4AX00-4AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Simcenter Femap
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Simcenter Nastran
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Siveillance Video V2022 R3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Siveillance Video V2023 R1
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Siveillance Video V2023 R2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Siveillance Video V2023 R3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Siveillance Video V2024 R1
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Siveillance Video V2025
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Solid Edge
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / User Management Component (UMC)
|
vers:unknown/* |
A vulnerability in Simcenter Femap and Simcenter Nastran (versions < V2512) allows attackers to execute code through an out of bounds read when processing specially crafted XDB files.
7.8 (High)
Affected products
Known affected
41 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Siemens / Cpu 1518F-4 Pn/Dp Mfp Firmware
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Desigo CC family V6
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Desigo CC family V7
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Desigo CC family V8
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Desigo CC family V9
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / NX
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / PS/IGES Parasolid Translator Component
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Polarion V2404
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Polarion V2410
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / RUGGEDCOM APE1808
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SENTRON Powermanager V6
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SENTRON Powermanager V7
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SENTRON Powermanager V8
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SENTRON Powermanager V9
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager (6GT2780-0DA00)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager (6GT2780-0DA10)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager (6GT2780-0DA20)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager (6GT2780-0DA30)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager (6GT2780-1EA10)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager (6GT2780-1EA20)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager (6GT2780-1EA30)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SINEC NMS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SINEC Network Management System
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIPLUS S7-1500 CPU 1518-4 PN/DP MFP (6AG1518-4AX00-4AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Simcenter Femap
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Simcenter Nastran
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Siveillance Video V2022 R3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Siveillance Video V2023 R1
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Siveillance Video V2023 R2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Siveillance Video V2023 R3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Siveillance Video V2024 R1
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Siveillance Video V2025
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Solid Edge
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / User Management Component (UMC)
|
vers:unknown/* |
A vulnerability in Simcenter Femap and Simcenter Nastran (versions < V2512) allows attackers to execute code through an out of bounds read when processing specially crafted NDB files.
7.8 (High)
Affected products
Known affected
41 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Siemens / Cpu 1518F-4 Pn/Dp Mfp Firmware
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Desigo CC family V6
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Desigo CC family V7
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Desigo CC family V8
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Desigo CC family V9
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / NX
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / PS/IGES Parasolid Translator Component
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Polarion V2404
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Polarion V2410
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / RUGGEDCOM APE1808
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SENTRON Powermanager V6
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SENTRON Powermanager V7
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SENTRON Powermanager V8
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SENTRON Powermanager V9
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager (6GT2780-0DA00)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager (6GT2780-0DA10)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager (6GT2780-0DA20)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager (6GT2780-0DA30)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager (6GT2780-1EA10)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager (6GT2780-1EA20)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager (6GT2780-1EA30)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SINEC NMS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SINEC Network Management System
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIPLUS S7-1500 CPU 1518-4 PN/DP MFP (6AG1518-4AX00-4AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Simcenter Femap
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Simcenter Nastran
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Siveillance Video V2022 R3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Siveillance Video V2023 R1
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Siveillance Video V2023 R2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Siveillance Video V2023 R3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Siveillance Video V2024 R1
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Siveillance Video V2025
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Solid Edge
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / User Management Component (UMC)
|
vers:unknown/* |
A vulnerability in Simcenter Femap and Simcenter Nastran (versions < V2512) allows for a heap-based buffer overflow when parsing specially crafted NDB files, potentially enabling code execution by an attacker.
7.8 (High)
Affected products
Known affected
41 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Siemens / Cpu 1518F-4 Pn/Dp Mfp Firmware
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Desigo CC family V6
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Desigo CC family V7
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Desigo CC family V8
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Desigo CC family V9
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / NX
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / PS/IGES Parasolid Translator Component
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Polarion V2404
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Polarion V2410
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / RUGGEDCOM APE1808
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SENTRON Powermanager V6
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SENTRON Powermanager V7
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SENTRON Powermanager V8
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SENTRON Powermanager V9
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager (6GT2780-0DA00)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager (6GT2780-0DA10)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager (6GT2780-0DA20)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager (6GT2780-0DA30)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager (6GT2780-1EA10)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager (6GT2780-1EA20)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager (6GT2780-1EA30)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SINEC NMS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SINEC Network Management System
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIPLUS S7-1500 CPU 1518-4 PN/DP MFP (6AG1518-4AX00-4AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Simcenter Femap
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Simcenter Nastran
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Siveillance Video V2022 R3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Siveillance Video V2023 R1
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Siveillance Video V2023 R2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Siveillance Video V2023 R3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Siveillance Video V2024 R1
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Siveillance Video V2025
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Solid Edge
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / User Management Component (UMC)
|
vers:unknown/* |
A vulnerability in Simcenter Femap and Simcenter Nastran (versions < V2512) allows attackers to execute code through an out of bounds read when processing specially crafted NDB files.
7.8 (High)
Affected products
Known affected
41 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Siemens / Cpu 1518F-4 Pn/Dp Mfp Firmware
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Desigo CC family V6
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Desigo CC family V7
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Desigo CC family V8
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Desigo CC family V9
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / NX
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / PS/IGES Parasolid Translator Component
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Polarion V2404
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Polarion V2410
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / RUGGEDCOM APE1808
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SENTRON Powermanager V6
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SENTRON Powermanager V7
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SENTRON Powermanager V8
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SENTRON Powermanager V9
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager (6GT2780-0DA00)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager (6GT2780-0DA10)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager (6GT2780-0DA20)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager (6GT2780-0DA30)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager (6GT2780-1EA10)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager (6GT2780-1EA20)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager (6GT2780-1EA30)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SINEC NMS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SINEC Network Management System
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIPLUS S7-1500 CPU 1518-4 PN/DP MFP (6AG1518-4AX00-4AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Simcenter Femap
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Simcenter Nastran
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Siveillance Video V2022 R3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Siveillance Video V2023 R1
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Siveillance Video V2023 R2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Siveillance Video V2023 R3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Siveillance Video V2024 R1
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Siveillance Video V2025
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Solid Edge
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / User Management Component (UMC)
|
vers:unknown/* |
A vulnerability in SINEC NMS (versions < V4.0 SP2) allows low-privileged users to modify a configuration file, potentially enabling arbitrary code execution with administrative privileges via malicious DLLs.
7.8 (High)
Affected products
Known affected
41 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Siemens / Cpu 1518F-4 Pn/Dp Mfp Firmware
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Desigo CC family V6
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Desigo CC family V7
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Desigo CC family V8
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Desigo CC family V9
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / NX
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / PS/IGES Parasolid Translator Component
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Polarion V2404
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Polarion V2410
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / RUGGEDCOM APE1808
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SENTRON Powermanager V6
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SENTRON Powermanager V7
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SENTRON Powermanager V8
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SENTRON Powermanager V9
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager (6GT2780-0DA00)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager (6GT2780-0DA10)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager (6GT2780-0DA20)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager (6GT2780-0DA30)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager (6GT2780-1EA10)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager (6GT2780-1EA20)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager (6GT2780-1EA30)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SINEC NMS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SINEC Network Management System
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIPLUS S7-1500 CPU 1518-4 PN/DP MFP (6AG1518-4AX00-4AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Simcenter Femap
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Simcenter Nastran
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Siveillance Video V2022 R3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Siveillance Video V2023 R1
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Siveillance Video V2023 R2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Siveillance Video V2023 R3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Siveillance Video V2024 R1
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Siveillance Video V2025
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Solid Edge
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / User Management Component (UMC)
|
vers:unknown/* |
A vulnerability in SINEC NMS allows low-privileged users to modify a configuration file, potentially enabling arbitrary code execution with SYSTEM privileges via malicious DLLs.
7.8 (High)
Affected products
Known affected
41 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Siemens / Cpu 1518F-4 Pn/Dp Mfp Firmware
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Desigo CC family V6
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Desigo CC family V7
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Desigo CC family V8
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Desigo CC family V9
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / NX
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / PS/IGES Parasolid Translator Component
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Polarion V2404
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Polarion V2410
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / RUGGEDCOM APE1808
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SENTRON Powermanager V6
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SENTRON Powermanager V7
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SENTRON Powermanager V8
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SENTRON Powermanager V9
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager (6GT2780-0DA00)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager (6GT2780-0DA10)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager (6GT2780-0DA20)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager (6GT2780-0DA30)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager (6GT2780-1EA10)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager (6GT2780-1EA20)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC RTLS Locating Manager (6GT2780-1EA30)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SINEC NMS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SINEC Network Management System
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIPLUS S7-1500 CPU 1518-4 PN/DP MFP (6AG1518-4AX00-4AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Simcenter Femap
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Simcenter Nastran
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Siveillance Video V2022 R3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Siveillance Video V2023 R1
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Siveillance Video V2023 R2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Siveillance Video V2023 R3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Siveillance Video V2024 R1
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Siveillance Video V2025
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Solid Edge
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / User Management Component (UMC)
|
vers:unknown/* |
References
21 references
{
"document": {
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE"
}
},
"lang": "nl",
"notes": [
{
"category": "legal_disclaimer",
"text": "The Netherlands Cyber Security Center (henceforth: NCSC-NL) maintains this page to enhance access to its information and security advisories. The use of this security advisory is subject to the following terms and conditions:\n\n NCSC-NL makes every reasonable effort to ensure that the content of this page is kept up to date, and that it is accurate and complete. Nevertheless, NCSC-NL cannot entirely rule out the possibility of errors, and therefore cannot give any warranty in respect of its completeness, accuracy or continuous keeping up-to-date. The information contained in this security advisory is intended solely for the purpose of providing general information to professional users. No rights can be derived from the information provided therein.\n\n NCSC-NL and the Kingdom of the Netherlands assume no legal liability or responsibility for any damage resulting from either the use or inability of use of this security advisory. This includes damage resulting from the inaccuracy of incompleteness of the information contained in the advisory.\n This security advisory is subject to Dutch law. All disputes related to or arising from the use of this advisory will be submitted to the competent court in The Hague. This choice of means also applies to the court in summary proceedings."
},
{
"category": "description",
"text": "Siemens heeft kwetsbaarheden verholpen in diverse producten als Desigo, NX, Polarion, SENTRON, Simcenter, SINEC, SIPORT, Siveillance, Solid Edge,",
"title": "Feiten"
},
{
"category": "description",
"text": "De kwetsbaarheden stellen een kwaadwillende mogelijk in staat aanvallen uit te voeren die kunnen leiden tot de volgende categorie\u00ebn schade:\n\n- Denial-of-Service (DoS)\n- Manipulatie van gegevens\n- Omzeilen van een beveiligingsmaatregel\n- (Remote) code execution (root/admin rechten)\n- Toegang tot systeemgegevens\n- Verhogen van rechten\n\nVan de SIPORT Desktop Client Application meldt Siemens dat deze verouderd is en niet voorzien van moderne beveiligingsmaatregelen. Siemens geeft aan deze ook niet meer in te bouwen en het onderhoud op de Desktop Client te stoppen. Siemens adviseert om over te schakelen naar de modernere web-management-omgeving. Wel heeft Siemens mitigerende maatregelen gepubliceerd in een Security Bulletin, om het risico zoveel als mogelijk te beperken tot de migratie is afgerond en de vaste Desktop Clients zijn uitgefaseerd.\n\nVoor succesvol misbruik van de genoemde kwetsbaarheden moet de kwaadwillende toegang hebben tot de productie-omgeving. Het is goed gebruik een dergelijke omgeving niet publiek toegankelijk te hebben.",
"title": "Interpretaties"
},
{
"category": "description",
"text": "Siemens heeft beveiligingsupdates uitgebracht om de kwetsbaarheden te verhelpen. Voor de kwetsbaarheden waar nog geen updates voor zijn, heeft Siemens mitigerende maatregelen gepubliceerd om de risico\u0027s zoveel als mogelijk te beperken. Zie de bijgevoegde referenties voor meer informatie.",
"title": "Oplossingen"
},
{
"category": "general",
"text": "medium",
"title": "Kans"
},
{
"category": "general",
"text": "high",
"title": "Schade"
},
{
"category": "general",
"text": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)",
"title": "CWE-79"
},
{
"category": "general",
"text": "Improper Restriction of Operations within the Bounds of a Memory Buffer",
"title": "CWE-119"
},
{
"category": "general",
"text": "Stack-based Buffer Overflow",
"title": "CWE-121"
},
{
"category": "general",
"text": "Heap-based Buffer Overflow",
"title": "CWE-122"
},
{
"category": "general",
"text": "Out-of-bounds Read",
"title": "CWE-125"
},
{
"category": "general",
"text": "Uncontrolled Search Path Element",
"title": "CWE-427"
},
{
"category": "general",
"text": "Out-of-bounds Write",
"title": "CWE-787"
},
{
"category": "general",
"text": "Missing Authorization",
"title": "CWE-862"
}
],
"publisher": {
"category": "coordinator",
"contact_details": "cert@ncsc.nl",
"name": "Nationaal Cyber Security Centrum",
"namespace": "https://www.ncsc.nl/"
},
"references": [
{
"category": "external",
"summary": "Reference",
"url": "https://cert-portal.siemens.com/productcert/html/ssa-035571.html"
},
{
"category": "external",
"summary": "Reference",
"url": "https://cert-portal.siemens.com/productcert/html/ssa-311973.html"
},
{
"category": "external",
"summary": "Reference",
"url": "https://cert-portal.siemens.com/productcert/html/ssa-445819.html"
},
{
"category": "external",
"summary": "Reference",
"url": "https://cert-portal.siemens.com/productcert/html/ssa-507364.html"
},
{
"category": "external",
"summary": "Reference",
"url": "https://cert-portal.siemens.com/productcert/html/ssa-535115.html"
},
{
"category": "external",
"summary": "Reference",
"url": "https://cert-portal.siemens.com/productcert/html/ssa-625934.html"
},
{
"category": "external",
"summary": "Reference",
"url": "https://cert-portal.siemens.com/productcert/html/ssa-965753.html"
},
{
"category": "external",
"summary": "Reference",
"url": "https://cert-portal.siemens.com/productcert/html/ssb-491780.html"
}
],
"title": "Kwetsbaarheden verholpen in Siemens producten",
"tracking": {
"current_release_date": "2026-02-10T12:27:40.637581Z",
"generator": {
"date": "2025-08-04T16:30:00Z",
"engine": {
"name": "V.A.",
"version": "1.3"
}
},
"id": "NCSC-2026-0051",
"initial_release_date": "2026-02-10T12:27:40.637581Z",
"revision_history": [
{
"date": "2026-02-10T12:27:40.637581Z",
"number": "1.0.0",
"summary": "Initiele versie"
}
],
"status": "final",
"version": "1.0.0"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-1"
}
}
],
"category": "product_name",
"name": "Cpu 1518F-4 Pn/Dp Mfp Firmware"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-2"
}
}
],
"category": "product_name",
"name": "Desigo CC family V6"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-3"
}
}
],
"category": "product_name",
"name": "Desigo CC family V7"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-4"
}
}
],
"category": "product_name",
"name": "Desigo CC family V8"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-5"
}
}
],
"category": "product_name",
"name": "Desigo CC family V9"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-6"
}
}
],
"category": "product_name",
"name": "NX"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-7"
}
}
],
"category": "product_name",
"name": "PS/IGES Parasolid Translator Component"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-8"
}
}
],
"category": "product_name",
"name": "Polarion V2404"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-9"
}
}
],
"category": "product_name",
"name": "Polarion V2410"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-10"
}
}
],
"category": "product_name",
"name": "RUGGEDCOM APE1808"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-11"
}
}
],
"category": "product_name",
"name": "SENTRON Powermanager V6"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-12"
}
}
],
"category": "product_name",
"name": "SENTRON Powermanager V7"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-13"
}
}
],
"category": "product_name",
"name": "SENTRON Powermanager V8"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-14"
}
}
],
"category": "product_name",
"name": "SENTRON Powermanager V9"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-15"
}
}
],
"category": "product_name",
"name": "SIMATIC RTLS Locating Manager"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-16"
}
}
],
"category": "product_name",
"name": "SIMATIC RTLS Locating Manager (6GT2780-0DA00)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-17"
}
}
],
"category": "product_name",
"name": "SIMATIC RTLS Locating Manager (6GT2780-0DA10)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-18"
}
}
],
"category": "product_name",
"name": "SIMATIC RTLS Locating Manager (6GT2780-0DA20)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-19"
}
}
],
"category": "product_name",
"name": "SIMATIC RTLS Locating Manager (6GT2780-0DA30)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-20"
}
}
],
"category": "product_name",
"name": "SIMATIC RTLS Locating Manager (6GT2780-1EA10)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-21"
}
}
],
"category": "product_name",
"name": "SIMATIC RTLS Locating Manager (6GT2780-1EA20)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-22"
}
}
],
"category": "product_name",
"name": "SIMATIC RTLS Locating Manager (6GT2780-1EA30)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-23"
}
}
],
"category": "product_name",
"name": "SIMATIC S7"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-24"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-25"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-26"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AC0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-27"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-28"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AC0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-29"
}
}
],
"category": "product_name",
"name": "SINEC NMS"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-30"
}
}
],
"category": "product_name",
"name": "SINEC Network Management System"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-31"
}
}
],
"category": "product_name",
"name": "SIPLUS S7-1500 CPU 1518-4 PN/DP MFP (6AG1518-4AX00-4AC0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-32"
}
}
],
"category": "product_name",
"name": "Simcenter Femap"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-33"
}
}
],
"category": "product_name",
"name": "Simcenter Nastran"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-34"
}
}
],
"category": "product_name",
"name": "Siveillance Video V2022 R3"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-35"
}
}
],
"category": "product_name",
"name": "Siveillance Video V2023 R1"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-36"
}
}
],
"category": "product_name",
"name": "Siveillance Video V2023 R2"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-37"
}
}
],
"category": "product_name",
"name": "Siveillance Video V2023 R3"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-38"
}
}
],
"category": "product_name",
"name": "Siveillance Video V2024 R1"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-39"
}
}
],
"category": "product_name",
"name": "Siveillance Video V2025"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-40"
}
}
],
"category": "product_name",
"name": "Solid Edge"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-41"
}
}
],
"category": "product_name",
"name": "User Management Component (UMC)"
}
],
"category": "vendor",
"name": "Siemens"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-38545",
"cwe": {
"id": "CWE-119",
"name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
},
"notes": [
{
"category": "other",
"text": "Improper Restriction of Operations within the Bounds of a Memory Buffer",
"title": "CWE-119"
},
{
"category": "other",
"text": "Heap-based Buffer Overflow",
"title": "CWE-122"
},
{
"category": "other",
"text": "Out-of-bounds Write",
"title": "CWE-787"
},
{
"category": "description",
"text": "Recent updates across macOS, iOS, Oracle products, and Curl address multiple security vulnerabilities, including high-severity issues that could lead to remote code execution and data compromise.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36",
"CSAFPID-37",
"CSAFPID-38",
"CSAFPID-39",
"CSAFPID-40",
"CSAFPID-41"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2023-38545 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2023/cve-2023-38545.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36",
"CSAFPID-37",
"CSAFPID-38",
"CSAFPID-39",
"CSAFPID-40",
"CSAFPID-41"
]
}
],
"title": "CVE-2023-38545"
},
{
"cve": "CVE-2025-0836",
"cwe": {
"id": "CWE-862",
"name": "Missing Authorization"
},
"notes": [
{
"category": "other",
"text": "Missing Authorization",
"title": "CWE-862"
},
{
"category": "description",
"text": "A vulnerability in Milestone Systems XProtect VMS allows users with read-only access to the Management Server to obtain full read/write access to the MIP Webhooks API.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36",
"CSAFPID-37",
"CSAFPID-38",
"CSAFPID-39",
"CSAFPID-40",
"CSAFPID-41"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-0836 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-0836.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36",
"CSAFPID-37",
"CSAFPID-38",
"CSAFPID-39",
"CSAFPID-40",
"CSAFPID-41"
]
}
],
"title": "CVE-2025-0836"
},
{
"cve": "CVE-2025-40587",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"notes": [
{
"category": "other",
"text": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)",
"title": "CWE-79"
},
{
"category": "description",
"text": "A vulnerability in Polarion versions prior to V2404.5 and V2410.2 allows authenticated remote attackers to execute stored cross-site scripting attacks via arbitrary JavaScript code in document titles.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:L/VA:N/SC:H/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36",
"CSAFPID-37",
"CSAFPID-38",
"CSAFPID-39",
"CSAFPID-40",
"CSAFPID-41"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-40587 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-40587.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.6,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:L/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36",
"CSAFPID-37",
"CSAFPID-38",
"CSAFPID-39",
"CSAFPID-40",
"CSAFPID-41"
]
}
],
"title": "CVE-2025-40587"
},
{
"cve": "CVE-2025-40936",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"notes": [
{
"category": "other",
"text": "Out-of-bounds Read",
"title": "CWE-125"
},
{
"category": "description",
"text": "A vulnerability in the PS/IGES Parasolid Translator Component and Solid Edge allows for an out of bounds read when parsing specially crafted IGS files, potentially enabling application crashes or code execution.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36",
"CSAFPID-37",
"CSAFPID-38",
"CSAFPID-39",
"CSAFPID-40",
"CSAFPID-41"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-40936 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-40936.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36",
"CSAFPID-37",
"CSAFPID-38",
"CSAFPID-39",
"CSAFPID-40",
"CSAFPID-41"
]
}
],
"title": "CVE-2025-40936"
},
{
"cve": "CVE-2026-22923",
"cwe": {
"id": "CWE-121",
"name": "Stack-based Buffer Overflow"
},
"notes": [
{
"category": "other",
"text": "Stack-based Buffer Overflow",
"title": "CWE-121"
},
{
"category": "description",
"text": "A data validation vulnerability in NX (versions \u003c V2512) allows local attackers to manipulate internal data during PDF export, potentially leading to arbitrary code execution.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36",
"CSAFPID-37",
"CSAFPID-38",
"CSAFPID-39",
"CSAFPID-40",
"CSAFPID-41"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-22923 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-22923.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36",
"CSAFPID-37",
"CSAFPID-38",
"CSAFPID-39",
"CSAFPID-40",
"CSAFPID-41"
]
}
],
"title": "CVE-2026-22923"
},
{
"cve": "CVE-2026-23715",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "other",
"text": "Out-of-bounds Write",
"title": "CWE-787"
},
{
"category": "description",
"text": "A vulnerability in Simcenter Femap and Simcenter Nastran (versions \u003c V2512) allows for an out of bounds write when parsing specially crafted XDB files, potentially enabling code execution by an attacker.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36",
"CSAFPID-37",
"CSAFPID-38",
"CSAFPID-39",
"CSAFPID-40",
"CSAFPID-41"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-23715 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-23715.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36",
"CSAFPID-37",
"CSAFPID-38",
"CSAFPID-39",
"CSAFPID-40",
"CSAFPID-41"
]
}
],
"title": "CVE-2026-23715"
},
{
"cve": "CVE-2026-23716",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"notes": [
{
"category": "other",
"text": "Out-of-bounds Read",
"title": "CWE-125"
},
{
"category": "description",
"text": "A vulnerability in Simcenter Femap and Simcenter Nastran (versions \u003c V2512) allows code execution due to an out of bounds read when parsing specially crafted XDB files.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36",
"CSAFPID-37",
"CSAFPID-38",
"CSAFPID-39",
"CSAFPID-40",
"CSAFPID-41"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-23716 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-23716.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36",
"CSAFPID-37",
"CSAFPID-38",
"CSAFPID-39",
"CSAFPID-40",
"CSAFPID-41"
]
}
],
"title": "CVE-2026-23716"
},
{
"cve": "CVE-2026-23717",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"notes": [
{
"category": "other",
"text": "Out-of-bounds Read",
"title": "CWE-125"
},
{
"category": "description",
"text": "A vulnerability in Simcenter Femap and Simcenter Nastran (versions \u003c V2512) allows attackers to execute code through an out of bounds read when processing specially crafted XDB files.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36",
"CSAFPID-37",
"CSAFPID-38",
"CSAFPID-39",
"CSAFPID-40",
"CSAFPID-41"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-23717 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-23717.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36",
"CSAFPID-37",
"CSAFPID-38",
"CSAFPID-39",
"CSAFPID-40",
"CSAFPID-41"
]
}
],
"title": "CVE-2026-23717"
},
{
"cve": "CVE-2026-23718",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"notes": [
{
"category": "other",
"text": "Out-of-bounds Read",
"title": "CWE-125"
},
{
"category": "description",
"text": "A vulnerability in Simcenter Femap and Simcenter Nastran (versions \u003c V2512) allows attackers to execute code through an out of bounds read when processing specially crafted NDB files.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36",
"CSAFPID-37",
"CSAFPID-38",
"CSAFPID-39",
"CSAFPID-40",
"CSAFPID-41"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-23718 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-23718.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36",
"CSAFPID-37",
"CSAFPID-38",
"CSAFPID-39",
"CSAFPID-40",
"CSAFPID-41"
]
}
],
"title": "CVE-2026-23718"
},
{
"cve": "CVE-2026-23719",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"notes": [
{
"category": "other",
"text": "Heap-based Buffer Overflow",
"title": "CWE-122"
},
{
"category": "description",
"text": "A vulnerability in Simcenter Femap and Simcenter Nastran (versions \u003c V2512) allows for a heap-based buffer overflow when parsing specially crafted NDB files, potentially enabling code execution by an attacker.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36",
"CSAFPID-37",
"CSAFPID-38",
"CSAFPID-39",
"CSAFPID-40",
"CSAFPID-41"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-23719 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-23719.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36",
"CSAFPID-37",
"CSAFPID-38",
"CSAFPID-39",
"CSAFPID-40",
"CSAFPID-41"
]
}
],
"title": "CVE-2026-23719"
},
{
"cve": "CVE-2026-23720",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"notes": [
{
"category": "other",
"text": "Out-of-bounds Read",
"title": "CWE-125"
},
{
"category": "description",
"text": "A vulnerability in Simcenter Femap and Simcenter Nastran (versions \u003c V2512) allows attackers to execute code through an out of bounds read when processing specially crafted NDB files.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36",
"CSAFPID-37",
"CSAFPID-38",
"CSAFPID-39",
"CSAFPID-40",
"CSAFPID-41"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-23720 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-23720.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36",
"CSAFPID-37",
"CSAFPID-38",
"CSAFPID-39",
"CSAFPID-40",
"CSAFPID-41"
]
}
],
"title": "CVE-2026-23720"
},
{
"cve": "CVE-2026-25655",
"cwe": {
"id": "CWE-427",
"name": "Uncontrolled Search Path Element"
},
"notes": [
{
"category": "other",
"text": "Uncontrolled Search Path Element",
"title": "CWE-427"
},
{
"category": "description",
"text": "A vulnerability in SINEC NMS (versions \u003c V4.0 SP2) allows low-privileged users to modify a configuration file, potentially enabling arbitrary code execution with administrative privileges via malicious DLLs.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36",
"CSAFPID-37",
"CSAFPID-38",
"CSAFPID-39",
"CSAFPID-40",
"CSAFPID-41"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-25655 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-25655.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36",
"CSAFPID-37",
"CSAFPID-38",
"CSAFPID-39",
"CSAFPID-40",
"CSAFPID-41"
]
}
],
"title": "CVE-2026-25655"
},
{
"cve": "CVE-2026-25656",
"cwe": {
"id": "CWE-427",
"name": "Uncontrolled Search Path Element"
},
"notes": [
{
"category": "other",
"text": "Uncontrolled Search Path Element",
"title": "CWE-427"
},
{
"category": "description",
"text": "A vulnerability in SINEC NMS allows low-privileged users to modify a configuration file, potentially enabling arbitrary code execution with SYSTEM privileges via malicious DLLs.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36",
"CSAFPID-37",
"CSAFPID-38",
"CSAFPID-39",
"CSAFPID-40",
"CSAFPID-41"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-25656 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-25656.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36",
"CSAFPID-37",
"CSAFPID-38",
"CSAFPID-39",
"CSAFPID-40",
"CSAFPID-41"
]
}
],
"title": "CVE-2026-25656"
}
]
}
SSA-535115
Vulnerability from csaf_siemens - Published: 2026-02-10 00:00 - Updated: 2026-03-10 00:00Summary
SSA-535115: Data Validation Vulnerability in NX Before V2512
Notes
Summary: Siemens NX is affected by missing data validation vulnerability that could allow an attacker with local access on a compromised system to interfere with internal data during the PDF export process that could potentially lead to arbitrary code execution.
Siemens has released a new version of NX which resolves the data tampering vulnerability.
General Recommendations: As a general security measure, Siemens strongly recommends to protect network access to devices with appropriate mechanisms. In order to operate the devices in a protected IT environment, Siemens recommends to configure the environment according to Siemens' operational guidelines for Industrial Security (Download: https://www.siemens.com/cert/operational-guidelines-industrial-security), and to follow the recommendations in the product manuals.
Additional information on Industrial Security by Siemens can be found at: https://www.siemens.com/industrialsecurity
Additional Resources: For further inquiries on security vulnerabilities in Siemens products and solutions, please contact the Siemens ProductCERT: https://www.siemens.com/cert/advisories
Terms of Use: The use of Siemens Security Advisories is subject to the terms and conditions listed on: https://www.siemens.com/productcert/terms-of-use.
7.8 (High)
6.7 (Medium)
References
2 references
{
"document": {
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Disclosure is not limited. (TLPv2: TLP:CLEAR)",
"tlp": {
"label": "WHITE"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Siemens NX is affected by missing data validation vulnerability that could allow an attacker with local access on a compromised system to interfere with internal data during the PDF export process that could potentially lead to arbitrary code execution. \n\nSiemens has released a new version of NX which resolves the data tampering vulnerability.",
"title": "Summary"
},
{
"category": "general",
"text": "As a general security measure, Siemens strongly recommends to protect network access to devices with appropriate mechanisms. In order to operate the devices in a protected IT environment, Siemens recommends to configure the environment according to Siemens\u0027 operational guidelines for Industrial Security (Download: https://www.siemens.com/cert/operational-guidelines-industrial-security), and to follow the recommendations in the product manuals.\nAdditional information on Industrial Security by Siemens can be found at: https://www.siemens.com/industrialsecurity",
"title": "General Recommendations"
},
{
"category": "general",
"text": "For further inquiries on security vulnerabilities in Siemens products and solutions, please contact the Siemens ProductCERT: https://www.siemens.com/cert/advisories",
"title": "Additional Resources"
},
{
"category": "legal_disclaimer",
"text": "The use of Siemens Security Advisories is subject to the terms and conditions listed on: https://www.siemens.com/productcert/terms-of-use.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "productcert@siemens.com",
"name": "Siemens ProductCERT",
"namespace": "https://www.siemens.com"
},
"references": [
{
"category": "self",
"summary": "SSA-535115: Data Validation Vulnerability in NX Before V2512 - HTML Version",
"url": "https://cert-portal.siemens.com/productcert/html/ssa-535115.html"
},
{
"category": "self",
"summary": "SSA-535115: Data Validation Vulnerability in NX Before V2512 - CSAF Version",
"url": "https://cert-portal.siemens.com/productcert/csaf/ssa-535115.json"
}
],
"title": "SSA-535115: Data Validation Vulnerability in NX Before V2512",
"tracking": {
"current_release_date": "2026-03-10T00:00:00.000Z",
"generator": {
"engine": {
"name": "Siemens ProductCERT CSAF Generator",
"version": "1"
}
},
"id": "SSA-535115",
"initial_release_date": "2026-02-10T00:00:00.000Z",
"revision_history": [
{
"date": "2026-02-10T00:00:00.000Z",
"legacy_version": "1.0",
"number": "1",
"summary": "Publication Date"
},
{
"date": "2026-03-10T00:00:00.000Z",
"legacy_version": "1.1",
"number": "2",
"summary": "Added product-specific CVSS for NX with managed mode"
}
],
"status": "interim",
"version": "2"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c2512",
"product": {
"name": "NX",
"product_id": "1"
}
}
],
"category": "product_name",
"name": "NX"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c2512",
"product": {
"name": "NX (Managed Mode)",
"product_id": "2"
}
}
],
"category": "product_name",
"name": "NX (Managed Mode)"
}
],
"category": "vendor",
"name": "Siemens"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-22923",
"cwe": {
"id": "CWE-121",
"name": "Stack-based Buffer Overflow"
},
"notes": [
{
"category": "summary",
"text": "The affected application contains a data validation vulnerability that could allow an attacker with local access to interfere with internal data during the PDF export process that could potentially lead to arbitrary code execution.",
"title": "Summary"
},
{
"category": "summary",
"text": "An attacker would need privileged access to the application running in managed mode in order to exploit",
"title": "For NX (Managed Mode)"
}
],
"product_status": {
"known_affected": [
"1",
"2"
]
},
"remediations": [
{
"category": "mitigation",
"details": "Prioritize strong overall system hygiene to prevent initial system infection which includes maintaining fully patched systems, robust endpoint security, and continuous monitoring for signs of compromise",
"product_ids": [
"1",
"2"
]
},
{
"category": "vendor_fix",
"details": "Update to V2512 or later version",
"product_ids": [
"1",
"2"
],
"url": "https://support.sw.siemens.com/product/209349590/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"1"
]
},
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"2"
]
}
],
"title": "CVE-2026-22923"
}
]
}
Loading…
Trend slope:
-
(linear fit over daily sighting counts)
Show additional events:
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…