CVE-2025-40584

A vulnerability has been identified in SIMOTION SCOUT TIA V5.4 All versions, SIMOTION SCOUT TIA V5.5 All versions, SIMOTION SCOUT TIA V5.6 All versions V5.6 SP1 HF7, SIMOTION SCOUT TIA V5.7 All versions V5.7 SP1 HF1, SIMOTION SCOUT V5.4 All versions, SIMOTION SCOUT V5.5 All versions, SIMOTION SCO...

EUVD-2023-31241

Malicious code in bioql PyPI...

EUVD-2025-24246

Malicious code in bioql PyPI...

CISA Releases Eleven Industrial Control Systems Advisories

CISA released eleven Industrial Control Systems ICS advisories on September 11, 2025. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-25-254-01 Siemens SIMOTION Tools ICSA-25-254-02 Siemens SIMATIC Virtualization as a...

Vulnerabilities fixed in Siemens products

Siemens has fixed vulnerabilities in several products such as Apogee, Industial Edge, RUGGEDCOM, SIMATIC, SIMOTION and SINAMICS. The vulnerabilities potentially enable a malicious person to carry out attacks that can lead to the following categories of damage: - Denial-of-Service DoS - Manipulati...

Siemens SIMOTION Tools

SUMMARY Several tools for the SIMOTION system are affected by a local privilege escalation vulnerability. This could allow an attacker to execute arbitrary code with SYSTEM privileges when a legitimate user installs an application that uses the affected setup component. This vulnerability poses...

CVE-2025-40584

A vulnerability has been identified in SIMOTION SCOUT TIA V5.4 All versions, SIMOTION SCOUT TIA V5.5 All versions, SIMOTION SCOUT TIA V5.6 All versions V5.6 SP1 HF7, SIMOTION SCOUT TIA V5.7 All versions V5.7 SP1 HF1, SIMOTION SCOUT V5.4 All versions, SIMOTION SCOUT V5.5 All versions, SIMOTION SCO...

CVE-2025-40584

A vulnerability has been identified in SIMOTION SCOUT TIA V5.4 All versions, SIMOTION SCOUT TIA V5.5 All versions, SIMOTION SCOUT TIA V5.6 All versions V5.6 SP1 HF7, SIMOTION SCOUT TIA V5.7 All versions V5.7 SP1 HF1, SIMOTION SCOUT V5.4 All versions, SIMOTION SCOUT V5.5 All versions, SIMOTION SCO...

CVE-2025-40584

CVE-2025-40584 maps to an XXE (XML External Entity) vulnerability in Siemens products, affecting SIMOTION SCOUT TIA (V5.4–V5.7 with various SP/HF constraints) and SIMOTION SCOUT/V5, as well as SINAMICS STARTER (V5.5–V5.7) across all versions listed. The flaw occurs while parsing crafted XML and c...

CVE-2025-40584

A vulnerability has been identified in SIMOTION SCOUT TIA V5.4 All versions, SIMOTION SCOUT TIA V5.5 All versions, SIMOTION SCOUT TIA V5.6 All versions V5.6 SP1 HF7, SIMOTION SCOUT TIA V5.7 All versions V5.7 SP1 HF1, SIMOTION SCOUT V5.4 All versions, SIMOTION SCOUT V5.5 All versions, SIMOTION SCO...

PT-2025-32651 · Siemens · Sinamics Starter +2

Name of the Vulnerable Software and Affected Versions: SIMOTION SCOUT TIA versions 5.4, 5.5, 5.6 through 5.6 SP1 HF6, and 5.7 through 5.7 SP1 HF0 SIMOTION SCOUT versions 5.4, 5.5, 5.6 through 5.6 SP1 HF6, and 5.7 through 5.7 SP1 HF0 SINAMICS STARTER versions 5.5, 5.6, and 5.7 Description: The...

Siemens多款产品 代码问题漏洞

Siemens SIMATIC STEP and Siemens SIMATIC S7-PLCSIM V17 are both products of Siemens, Germany.Siemens SIMATIC STEP is a comprehensive engineering tool for configuring and programming SIMATIC controllers.Siemens SIMATIC S7-PLCSIM V17 is a PLC program simulation software. PLCSIM V17 is a PLC program...

Siemens SIMOTION SCOUT, SIMOTION SCOUT TIA, and SINAMICS STARTER

SUMMARY SIMOTION SCOUT, SIMOTION SCOUT TIA and SINAMICS STARTER are affected by an XXE injection vulnerability that could allow an attacker to access arbitrary application files. Siemens has released new versions for several affected products and recommends to update to the latest versions...

PT-2025-32657 · Siemens · Simatic S7-Plcsim +11

Name of the Vulnerable Software and Affected Versions: SIMATIC S7-PLCSIM versions affected versions not specified SIMATIC STEP 7 versions affected versions not specified SIMATIC WinCC versions affected versions not specified SIMOCODE ES versions affected versions not specified SIMOTION SCOUT TIA...

PT-2025-32646 · Siemens · Simatic S7-Plcsim +10

Name of the Vulnerable Software and Affected Versions: SIMATIC PCS neo versions 4.1 through 6.0 SIMATIC S7-PLCSIM version 17 SIMATIC STEP 7 versions 17 through 20 SIMATIC WinCC versions 17 through 20 SIMOCODE ES versions 17 through 20 SIMOTION SCOUT TIA versions 5.4 through 5.7 SINAMICS Startdriv...

Siemens多款产品 代码问题漏洞

Siemens SIMATIC STEP and others are products of Siemens, a German company. siemens SIMATIC STEP is a comprehensive engineering tool for configuring and programming SIMATIC controllers. siemens SIMATIC PCS neo is a distributed control system. siemens SIMATIC STEP 7 is a PLC program simulation...

CVE-2023-27465

A vulnerability has been identified in SIMOTION C240 All versions = V5.4 = V5.4 = V5.4 = V5.4 = V5.4 = V5.4 = V5.4 = V5.4 = V5.4, SIMOTION D445-2 DP/PN All versions = V5.4 = V5.4 = V5.4, SIMOTION P320-4 S All versions = V5.4. When operated with Security Level Low the device does not protect acces...

CVE-2023-32735

A vulnerability has been identified in SIMATIC STEP 7 Safety V16 All versions V16 Update 7, SIMATIC STEP 7 Safety V17 All versions V17 Update 7, SIMATIC STEP 7 Safety V18 All versions V18 Update 2, SIMATIC STEP 7 V16 All versions V16 Update 7, SIMATIC STEP 7 V17 All versions V17 Update 7, SIMATIC...

Siemens SIMOTION and SIMOTION P320 Information Disclosure Vulnerability

SIMOTION is a scalable, high-performance motion control hardware and software system.SIMOTION P320 is an industrial PC for motion control. An information disclosure vulnerability exists in the Siemens SIMOTION and SIMOTION P320, which arises from the device not protecting access to certain servic...

CVE-2023-27465

A vulnerability has been identified in SIMOTION C240 All versions = V5.4 = V5.4 = V5.4 = V5.4 = V5.4 = V5.4 = V5.4 = V5.4 = V5.4, SIMOTION D445-2 DP/PN All versions = V5.4 = V5.4 = V5.4, SIMOTION P320-4 S All versions = V5.4. When operated with Security Level Low the device does not protect acces...