CVE Tools

siemens

Enterprise SoftwareDEcommercial

2,302

Cumulative CVEs

150

Monthly snapshots

#7

Peak rank

Top products

sinec ins4 simatic wincc unified pc runtime v171 simatic wincc unified pc runtime v181

Latest CVEs

The 15 most recently published vulnerabilities affecting siemens.

CVE-2026-46749A vulnerability has been identified in SINEC INS (All versions < V1.0 SP2 Update 6). The affected application uses a password hashing implementation with a static, hardcoded salt shared across all ...7.5Jun 9, 2026
CVE-2026-46748A vulnerability has been identified in SINEC INS (All versions < V1.0 SP2 Update 6). The affected system includes a binary that is configured with the cap_dac_override capability. This capability a...8.8Jun 9, 2026
CVE-2026-46747A vulnerability has been identified in SINEC INS (All versions < V1.0 SP2 Update 6). The affected application does not properly sanitize path input in the `GET /api/sftp/uploadFiles` endpoint used ...4.3Jun 9, 2026
CVE-2026-46746A vulnerability has been identified in SINEC INS (All versions < V1.0 SP2 Update 6). The application does not properly sanitize user input in the /api/sftp/uploadFiles endpoint, allowing the inject...8.8Jun 9, 2026
CVE-2026-24349A vulnerability has been identified in SIMATIC WinCC Unified PC Runtime V16 (All versions), SIMATIC WinCC Unified PC Runtime V17 (All versions), SIMATIC WinCC Unified PC Runtime V18 (All versions),...7.1Jun 9, 2026
CVE-2025-40808A vulnerability has been identified in SIPROTEC 5 6MD84 (CP300) (All versions), SIPROTEC 5 6MD85 (CP200) (All versions), SIPROTEC 5 6MD85 (CP300) (All versions), SIPROTEC 5 6MD86 (CP200) (All versi...6.1Jun 9, 2026
CVE-2026-41918A vulnerability has been identified in RUGGEDCOM RST2428P (6GK6242-6PA00) (All versions < V4.0). The affected applications stores sensitive information in the browser cache when an authenticated us...5.7Jun 2, 2026
CVE-2026-0257PAN-OS: GlobalProtect Authentication Bypass VulnerabilitiesKEV9.1May 13, 2026
CVE-2026-42177linux-entra-sso: PRT SSO cookie can leak to attacker-controlled hosts when broad host permissions are granted5.3May 12, 2026
CVE-2025-12659Heap-based buffer overflow in Siemens Simcenter Femap7.8May 12, 2026
CVE-2026-44412A vulnerability has been identified in Solid Edge SE2026 (All versions < V226.0 Update 5). The affected applications contain a stack based overflow vulnerability while parsing specially crafted PAR...7.8May 12, 2026
CVE-2026-44411A vulnerability has been identified in Solid Edge SE2026 (All versions < V226.0 Update 5). The affected application is vulnerable to uninitialized pointer access while parsing specially crafted PAR...7.8May 12, 2026
CVE-2026-41551A vulnerability has been identified in ROS# (All versions < V2.2.2). Affected versions contain a path traversal vulnerability because user input is not properly sanitized. This could allow a remot...9.1May 12, 2026
CVE-2026-41125A vulnerability has been identified in blueplanet 100 NX3 M8 (All versions), blueplanet 100 TL3 GEN2 (All versions), blueplanet 105 TL3 (All versions), blueplanet 105 TL3 GEN2 (All versions), bluep...6.0May 12, 2026
CVE-2026-33893A vulnerability has been identified in Teamcenter V2312 (All versions < V2312.0014), Teamcenter V2406 (All versions < V2406.0012), Teamcenter V2412 (All versions < V2412.0009), Teamcenter V2506 (Al...7.5May 12, 2026