21 matches found
EUVD-2025-10332
Malicious code in bioql PyPI...
EUVD-2025-10323
Malicious code in bioql PyPI...
Siemens License Server Privilege Mismanagement Vulnerability
Siemens License Server SLS is a tool from Siemens, Germany, for managing and distributing licenses for Siemens software products. A privilege mismanagement vulnerability exists in Siemens License Server that stems from not properly validating an executable file in an application folder, which can...
The vulnerability of the Siemens License Server (SLS) software management tool, related to deficiencies in access control, allows a violator to enhance their privileges and execute arbitrary code.
The vulnerability of the Siemens License Server SLS software management tool is related to deficiencies in access control. Exploiting this vulnerability can allow a perpetrator to enhance their privileges and execute arbitrary code...
The vulnerability of the Siemens License Server (SLS) software, related to errors in the authentication process, allows a violator to increase their privileges.
The vulnerability of the Siemens License Server SLS software management tool is related to errors in the certificate authenticity verification process. Exploiting this vulnerability can allow attackers to increase their privileges...
CISA Releases Ten Industrial Control Systems Advisories
CISA released ten Industrial Control Systems ICS advisories on April 10, 2025. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-25-100-01 Siemens License Server ICSA-25-100-02 Siemens SIDIS Prime ICSA-25-100-03 Siemens...
CVE-2025-30000
A vulnerability has been identified in Siemens License Server SLS All versions V4.3. The affected application does not properly restrict permissions of the users. This could allow a lowly-privileged attacker to escalate their privileges...
CVE-2025-29999
A vulnerability has been identified in Siemens License Server SLS All versions V4.3. The affected application searches for executable files in the application folder without proper validation. This could allow an attacker to execute arbitrary code with administrative privileges by placing a...
Vulnerabilities fixed in Siemens products
Siemens has fixed vulnerabilities in various products such as Industrial Edge Devices, Mendix, SENTRON, SIDIS, SIMATIC, SIPLUS,Insights Hub Private Cloud, Siemens License Server and Solid Edge. The vulnerabilities potentially enable a malicious person to carry out attacks that can lead to the...
CVE-2025-29999
A vulnerability has been identified in Siemens License Server SLS All versions V4.3. The affected application searches for executable files in the application folder without proper validation. This could allow an attacker to execute arbitrary code with administrative privileges by placing a...
CVE-2025-30000
A vulnerability has been identified in Siemens License Server SLS All versions V4.3. The affected application does not properly restrict permissions of the users. This could allow a lowly-privileged attacker to escalate their privileges...
CVE-2025-30000
A vulnerability has been identified in Siemens License Server SLS All versions V4.3. The affected application does not properly restrict permissions of the users. This could allow a lowly-privileged attacker to escalate their privileges...
CVE-2025-30000
A vulnerability has been identified in Siemens License Server SLS All versions V4.3. The affected application does not properly restrict permissions of the users. This could allow a lowly-privileged attacker to escalate their privileges...
CVE-2025-30000
CVE-2025-30000 affects Siemens License Server (SLS) prior to version 4.3. The issue is improper restriction of user permissions, enabling a low-privileged local attacker to escalate privileges. Multiple sources (Siemens ProductCERT, Red Hat, NVD, and related advisories) confirm affected software ...
CVE-2025-29999
A vulnerability has been identified in Siemens License Server SLS All versions V4.3. The affected application searches for executable files in the application folder without proper validation. This could allow an attacker to execute arbitrary code with administrative privileges by placing a...
CVE-2025-29999
A vulnerability has been identified in Siemens License Server SLS All versions V4.3. The affected application searches for executable files in the application folder without proper validation. This could allow an attacker to execute arbitrary code with administrative privileges by placing a...
CVE-2025-29999
CVE-2025-29999 affects Siemens License Server (SLS) prior to v4.3. The issue: the application searches for executable files in its folder without proper validation, allowing an attacker to execute arbitrary code with administrative privileges by placing a malicious executable in the same director...
Siemens License Server(SLS) 安全漏洞
Siemens License Server SLS is a tool from Siemens, Germany, for managing and distributing licenses for Siemens software products. A privilege mismanagement vulnerability exists in Siemens License Server that stems from not properly validating an executable file in an application folder, which can...
Siemens License Server(SLS) 信任管理问题漏洞
Siemens License Server SLS is a tool for managing and distributing licenses for Siemens software products from Siemens AG, Germany. A trust management issue vulnerability exists in Siemens License Server SLS versions prior to V4.3 that stems from not properly restricting user privileges, which...
PT-2025-15406 · Siemens · Siemens License Server
Name of the Vulnerable Software and Affected Versions: Siemens License Server SLS versions prior to V4.3 Description: A vulnerability has been identified where the affected application searches for executable files in the application folder without proper validation. This could allow an attacker ...