CVE-2026-33893

HIGH

Siemens Teamcenter Hard-coded Credentials Vulnerability

Title source: llm

Description

A vulnerability has been identified in Teamcenter V2312 (All versions < V2312.0014), Teamcenter V2406 (All versions < V2406.0012), Teamcenter V2412 (All versions < V2412.0009), Teamcenter V2506 (All versions < V2506.0005), Teamcenter V2512 (All versions). The affected application contains hardcoded key which is used for obfuscation stored directly into the application. This could allow an attacker to obtain these keys and misuse them to gain unauthorized access.

References (1)

Core 1

Core References

https://cert-portal.siemens.com/productcert/html/ssa-827383.html

Scores

CVSS v3 7.5

EPSS 0.0005

EPSS Percentile 16.4%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable yes

Technical Impact partial

Details

CWE

CWE-798

Status published

Products (6)

siemens/teamcenter 2312.0 - 2312.0014

Siemens/Teamcenter V2312 < V2312.0014

Siemens/Teamcenter V2406 < V2406.0012

Siemens/Teamcenter V2412 < V2412.0009

Siemens/Teamcenter V2506 < V2506.0005

Siemens/Teamcenter V2512

Published May 12, 2026

Tracked Since May 12, 2026