siemens

2,341 tracked vulnerabilities.

CVE-2026-25571 MEDIUM
SICAM SIAPP SDK <V2.1.7 - Buffer Overflow
Mar 10, 2026
CVSS 5.1
EPSS 0.00
CVE-2026-25570 HIGH
SICAM SIAPP SDK <V2.1.7 - Buffer Overflow
Mar 10, 2026
CVSS 7.4
EPSS 0.00
CVE-2026-25569 HIGH
SICAM SIAPP SDK <V2.1.7 - Memory Corruption
Mar 10, 2026
CVSS 7.4
EPSS 0.00
CVE-2026-25656 HIGH
SINEC NMS < V4.0 SP3 and UMC < V2.15.2.1 - Uncontrolled Search Path Element
Feb 10, 2026
CVSS 7.8
EPSS 0.00
CVE-2026-25655 HIGH
SINEC NMS < V4.0 SP2 - Uncontrolled Search Path Element via Configuration File Modification
Feb 10, 2026
CVSS 7.8
EPSS 0.00
CVE-2026-23720 HIGH
Simcenter Femap, Nastran <V2512 - Code Injection
Feb 10, 2026
CVSS 7.8
EPSS 0.00
CVE-2026-23719 HIGH
Simcenter Femap, Nastran <V2512 - Buffer Overflow
Feb 10, 2026
CVSS 7.8
EPSS 0.00
CVE-2026-23718 HIGH
Simcenter Femap, Nastran <V2512 - Code Injection
Feb 10, 2026
CVSS 7.8
EPSS 0.00
CVE-2026-23717 HIGH
Simcenter Femap, Nastran <V2512 - RCE
Feb 10, 2026
CVSS 7.8
EPSS 0.00
CVE-2026-23716 HIGH
Simcenter Femap, Nastran <V2512 - Code Injection
Feb 10, 2026
CVSS 7.8
EPSS 0.00
CVE-2026-23715 HIGH
Simcenter Femap, Nastran <V2512 - RCE
Feb 10, 2026
CVSS 7.8
EPSS 0.00
CVE-2026-22923 HIGH
Siemens NX < 2512.0 - Stack-based Buffer Overflow in PDF Export
Feb 10, 2026
CVSS 7.8
EPSS 0.00
CVE-2026-24858 CRITICAL KEV
Fortinet FortiAnalyzer 7.0.0-7.0.15, 7.2.0-7.2.11, 7.4.0-7.4.9, 7.6.0-7.6.5 - Authentication Bypass via FortiCloud SSO
Jan 27, 2026
CVSS 9.8
EPSS 0.04
CVE-2025-12659 HIGH
Heap-based buffer overflow in Siemens Simcenter Femap
May 12, 2026
EPSS 0.00
CVE-2025-40949 CRITICAL
Siemens Ruggedcom Rox MX5000 - Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
May 12, 2026
CVSS 9.1
EPSS 0.00
CVE-2025-40948 MEDIUM
Siemens Ruggedcom Rox MX5000 - Improper Neutralization of Argument Delimiters in a Command ('Argument Injection')
May 12, 2026
CVSS 6.8
EPSS 0.00
CVE-2025-40947 HIGH
Siemens Ruggedcom Rox MX5000 - Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
May 12, 2026
CVSS 7.5
EPSS 0.00
CVE-2025-40946 HIGH
Siemens blueplanet - Use of Hard-coded Cryptographic Key for Technical Service Credentials
May 12, 2026
CVSS 8.3
EPSS 0.00
CVE-2025-40833 HIGH
Siemens SCALANCE and RUGGEDCOM Devices < V8.3 - Denial of Service via Crafted IPv4 Request
May 12, 2026
CVSS 7.5
EPSS 0.00
CVE-2025-40745 LOW
Siemens Software Center <V3.5.8.2 - Auth Bypass
Apr 14, 2026
CVSS 3.7
EPSS 0.00
CVE-2025-40943 CRITICAL
SIMATIC S7-1500 Software Controller CPU 1507S F V4 - Authenticated Code Injection via Crafted Trace File Import
Mar 10, 2026
CVSS 9.6
EPSS 0.00
CVE-2025-40944 HIGH
SIMATIC ET 200AL IM 157-1 PN - Denial of Service via S7 Protocol Disconnect Request
Jan 13, 2026
CVSS 7.5
EPSS 0.00
CVE-2025-40942 HIGH
TeleControl Server Basic < 3.1.2.4 - Local Privilege Escalation
Jan 13, 2026
CVSS 8.8
EPSS 0.00
CVE-2025-40805 CRITICAL
Siemens Industrial Edge Cloud Device and Device Kit - Authentication Bypass
Jan 13, 2026
CVSS 10.0
EPSS 0.00
CVE-2025-40829 HIGH
Simcenter Femap < 2512.0000 - Remote Code Execution via SLDPRT File Parsing
Dec 12, 2025
CVSS 7.8
EPSS 0.00
Products
teamcenter_visualization 188 jt2go 166 tecnomatix_plant_simulation 85 simcenter_femap 77 telecontrol_server_basic 77 sinema_remote_connect_server 71 sinec_infrastructure_network_services 68 scalance_w1750d_firmware 62 parasolid 52 solid_edge 47 wincc 43 sinec_nms 42 sinec_ins 38 solid_edge_se2023 36 sppa-t3000_ms3000_migration_server 35 jt_utilities 32 comos 31 simatic_wincc 30 jt_open_toolkit 29 scalance_lpe9403_firmware 27 nucleus_net 25 nucleus_source_code 25 simatic_pcs7 25 simatic_pcs_7 25 scalance_s615_firmware 24 simatic_ipc427e_firmware 24 simatic_ipc477e_firmware 24 simatic_itp1000_firmware 24 simatic_pcs_neo 24 ruggedcom_rox_mx5000_firmware 23
Quick Filters
Critical CVEs With Exploits In CISA KEV