Siemens Security Vulnerabilities (CVEs)
Track 539 security vulnerabilities affecting Siemens products and software. Get instant email alerts when new CVEs are discovered, automated security monitoring, and patch guidance.
This vulnerability allows authenticated remote attackers to execute arbitrary code with root privileges on SENTRON 7KT PAC1260 Data Manager devices. A...
Apr 8, 2025This vulnerability allows authenticated remote attackers to execute arbitrary code with root privileges on SENTRON 7KT PAC1260 Data Manager devices. T...
Apr 8, 2025A memory corruption vulnerability in Simcenter Femap allows attackers to execute arbitrary code by tricking users into opening malicious .NEU files. T...
Mar 13, 2025This vulnerability allows remote code execution through specially crafted WRL files in Siemens Teamcenter Visualization and Tecnomatix Plant Simulatio...
Mar 11, 2025This vulnerability allows authenticated local administrators on SiPass integrated access control systems to escalate privileges by injecting arbitrary...
Mar 11, 2025This vulnerability allows authenticated remote administrators on SiPass integrated access control systems to escalate privileges by injecting arbitrar...
Mar 11, 2025A vulnerability in SCALANCE LPE9403 industrial network devices allows authenticated high-privileged remote attackers to execute arbitrary code due to ...
Mar 11, 2025This vulnerability in Siemens SCALANCE LPE9403 industrial network devices allows authenticated high-privileged attackers to execute arbitrary code due...
Mar 11, 2025This vulnerability allows an authenticated, highly-privileged remote attacker to execute arbitrary code on affected SCALANCE LPE9403 devices by exploi...
Mar 11, 2025This vulnerability in Siemens SCALANCE LPE9403 industrial routers allows authenticated high-privilege attackers to read and write arbitrary files via ...
Mar 11, 2025A privilege escalation vulnerability in Siemens SCALANCE LPE9403 industrial routers allows authenticated low-privileged remote attackers to gain highe...
Mar 11, 2025This vulnerability allows remote code execution through specially crafted WRL files in Siemens Teamcenter Visualization and Tecnomatix Plant Simulatio...
Mar 11, 2025This vulnerability in Tecnomatix Plant Simulation allows unauthorized attackers to delete files even when system access should be prohibited. It affec...
Mar 11, 2025This CVE describes an open redirect vulnerability in Siemens Teamcenter's SSO login service across multiple versions. An attacker can craft malicious ...
Feb 11, 2025This vulnerability allows authenticated local attackers to execute arbitrary code with elevated privileges by exploiting a script that loads executabl...
Feb 11, 2025This vulnerability in Solid Edge allows attackers to execute arbitrary code by exploiting an out-of-bounds write buffer overflow when parsing maliciou...
Dec 10, 2024A heap-based buffer overflow vulnerability in Solid Edge SE2024 allows attackers to execute arbitrary code by tricking users into opening malicious PA...
Dec 10, 2024A stack-based buffer overflow vulnerability in Siemens Teamcenter Visualization and Tecnomatix Plant Simulation allows remote code execution when pars...
Dec 10, 2024This CVE describes an out-of-bounds write vulnerability in Siemens Teamcenter Visualization and Tecnomatix Plant Simulation products when parsing spec...
Nov 18, 2024This CVE describes an out-of-bounds write vulnerability in Siemens Teamcenter Visualization and Tecnomatix Plant Simulation products when parsing mali...
Nov 18, 2024This CVE describes an out-of-bounds write vulnerability in Siemens Teamcenter Visualization and Tecnomatix Plant Simulation products when parsing mali...
Nov 18, 2024This CVE describes an out-of-bounds write vulnerability in Siemens Teamcenter Visualization and Tecnomatix Plant Simulation products when parsing mali...
Nov 18, 2024This vulnerability allows remote code execution through specially crafted WRL files in Siemens Teamcenter Visualization and Tecnomatix Plant Simulatio...
Nov 18, 2024This vulnerability affects multiple Siemens industrial networking devices where authenticated remote attackers can upload files with malicious filenam...
Nov 12, 2024This vulnerability affects multiple Siemens industrial network devices where improper input sanitization allows authenticated remote attackers with ad...
Nov 12, 2024This vulnerability allows unauthenticated remote attackers to execute arbitrary code on affected Siemens industrial routers by exploiting improper inp...
Nov 12, 2024This vulnerability affects multiple Siemens industrial network devices where improper filename validation for certificates allows authenticated remote...
Nov 12, 2024Solid Edge SE2024 versions before V224.0 Update 9 contain a DLL hijacking vulnerability that allows attackers to execute arbitrary code by placing a m...
Nov 12, 2024A local privilege escalation vulnerability exists in SIPORT software where improper file permissions allow unprivileged local users to modify service ...
Nov 12, 2024This vulnerability in Solid Edge SE2024 allows attackers to execute arbitrary code by exploiting an out-of-bounds read when parsing malicious PSM file...
Nov 12, 2024SINEC INS versions before V1.0 SP2 Update 3 use hard-coded cryptographic keys to obfuscate configuration files, allowing attackers to reverse-engineer...
Nov 12, 2024This vulnerability allows authenticated remote attackers with high privileges in SINEC INS to execute arbitrary operating system commands through impr...
Nov 12, 2024This vulnerability allows authenticated attackers to maintain active sessions even after their user accounts have been disabled or deleted in SINEC IN...
Nov 12, 2024This vulnerability allows unauthenticated remote attackers to execute arbitrary code with SYSTEM privileges on Siemens TeleControl Server Basic system...
Nov 12, 2024This vulnerability in Siemens Spectrum Power 7 allows authenticated local attackers to escalate privileges by exploiting root-owned SUID binaries. Att...
Nov 12, 2024This vulnerability allows unauthenticated attackers to execute operating system commands via unauthenticated GET requests to the web server in affecte...
Oct 23, 2024This vulnerability allows authenticated local attackers to execute arbitrary commands with root privileges on affected InterMesh devices. It affects I...
Oct 23, 2024An unauthenticated remote attacker can exploit a path traversal vulnerability in Siemens SINEC Security Monitor to write files outside intended direct...
Oct 8, 2024This vulnerability allows authenticated local attackers to execute arbitrary code with elevated privileges by placing a malicious executable in a dire...
Oct 8, 2024This vulnerability in Siemens SINEC Security Monitor allows authenticated low-privileged remote attackers to execute arbitrary code with root privileg...
Oct 8, 2024A memory corruption vulnerability in Simcenter Femap allows attackers to execute arbitrary code by tricking users into opening malicious BDF files. Th...
Oct 8, 2024This vulnerability allows memory corruption when parsing specially crafted WRL files in Siemens Teamcenter Visualization and Tecnomatix Plant Simulati...
Oct 8, 2024This vulnerability allows memory corruption when parsing malicious WRL files in Siemens Teamcenter Visualization and Tecnomatix Plant Simulation softw...
Oct 8, 2024This vulnerability allows remote code execution through memory corruption when parsing malicious WRL files in Siemens Teamcenter Visualization and Tec...
Oct 8, 2024This vulnerability allows remote code execution through specially crafted WRL files in Siemens Teamcenter Visualization and Tecnomatix Plant Simulatio...
Oct 8, 2024This vulnerability allows remote code execution through specially crafted WRL files in Siemens Teamcenter Visualization and Tecnomatix Plant Simulatio...
Oct 8, 2024This vulnerability allows remote code execution via specially crafted WRL files in Siemens Teamcenter Visualization and Tecnomatix Plant Simulation so...
Oct 8, 2024Triangle Microworks IEC 61850 Client libraries before version 12.2.0 have a buffer overflow vulnerability due to missing size checks when processing m...
Sep 18, 2024SINEMA Remote Connect Client versions before V3.2 SP2 write sensitive configuration data to log files that are readable by all legitimate system users...
Sep 10, 2024This vulnerability affects multiple Siemens SIMATIC RFID reader models, allowing attackers to access hidden debug functionality that reveals internal ...
Sep 10, 2024Why Monitor Siemens Security Vulnerabilities?
Real-time CVE tracking: Our automated system monitors 539+ known vulnerabilities affecting Siemens products and software packages. Stay ahead of emerging threats with instant email notifications when new security issues are discovered.
Automated security monitoring: Unlike manual CVE checking, FixTheCVE automatically scans your servers and detects vulnerable Siemens packages in under 60 seconds. No agents required - completely agentless scanning that works across Siemens deployments.
Free vulnerability database: Access detailed information about every Siemens CVE including CVSS scores, severity ratings, affected versions, and actionable patch guidance. Filter by critical, high, medium, or low severity to prioritize your security remediation efforts.
🚀 Get Started in 60 Seconds
- Register free account & add your servers
- Run one-time scan or schedule automatic monitoring (every 1-24 hours)
- Receive instant alerts when new Siemens CVEs affect your systems
- Access dashboard with severity breakdown & fix instructions
