Lucene search
K

1684 matches found

CVE
CVE
added 2025/12/09 10:44 a.m.11 views

CVE-2025-40800

CVE-2025-40800 affects Siemens products including COMOS, NX, Simcenter 3D/Femap, and Solid Edge. The IAM client in these products fails to validate server certificates when establishing TLS connections to the authorization server, enabling potential man-in-the-middle attacks. Affected versions in...

9.1CVSS7.2AI score0.00185EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/12/09 10:44 a.m.2 views

CVE-2025-40800

A vulnerability has been identified in COMOS V10.6 All versions V10.6.1, COMOS V10.6 All versions V10.6.1, NX V2412 All versions V2412.8700, NX V2506 All versions V2506.6000, Simcenter 3D All versions V2506.6000, Simcenter Femap All versions V2506.0002, Solid Edge SE2025 All versions V225.0 Updat...

9.1CVSS7.2AI score0.00185EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/12/09 12:0 a.m.4 views

PT-2025-49832

Name of the Vulnerable Software and Affected Versions COMOS versions prior to V10.6 NX versions prior to V2412.8700 NX versions prior to V2506.6000 Simcenter 3D versions prior to V2506.6000 Simcenter Femap versions prior to V2506.0002 Solid Edge SE2025 versions prior to V225.0 Update 10 Solid Edg...

9.1CVSS8.9AI score0.00185EPSS
Exploits0References6
CNNVD
CNNVD
added 2025/12/09 12:0 a.m.5 views

Siemens多款产品 信任管理问题漏洞

Siemens Simcenter Femap and others are products of Siemens, a German company.Siemens Simcenter Femap is a cutting-edge engineering simulation application.Siemens NX is Siemens COMOS is a process industry operations management software. A trust management issue vulnerability exists in various...

9.1CVSS8.8AI score0.00185EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/12/02 12:0 a.m.5 views

PT-2025-48702

Entrust nShield Connect XC, nShield 5c, and nShield HSMi through 13.6.11, or 13.7, allow a physically proximate attacker with elevated privileges to read and modify the Appliance SSD contents because they are unencrypted...

6.8AI score0.0016EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
added 2025/11/17 11:39 a.m.4 views

CVE-2025-40936

A vulnerability has been identified in PS/IGES Parasolid Translator Component All versions V29.0.258, Solid Edge All versions V226.00 Update 03. The affected applications contains an out of bounds read vulnerability while parsing specially crafted IGS files. This could allow an attacker to crash...

7.8CVSS5.6AI score0.00178EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/11/14 12:0 a.m.2 views

Siemens Solid Edge DLL Hijacking (SSA-365596)

The version of Siemens Solid Edge installed on the remote Windows host is prior to SE2025 V225.0 Update 10. It is, therefore, affected by a DLL hijacking vulnerability. The affected application is vulnerable to DLL hijacking. This could allow an attacker to execute arbitrary code via placing a...

8.5CVSS6.2AI score0.00141EPSS
Exploits0References3
CISA
CISA
added 2025/11/13 12:0 p.m.5 views

CISA Releases 18 Industrial Control Systems Advisories

CISA released 18 Industrial Control Systems ICS Advisories. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-25-317-01 Mitsubishi Electric MELSEC iQ-F Series ICSA-25-317-02 AVEVA Application Server IDE ICSA-25-317-03...

6.6AI score
Exploits0References18
EUVD
EUVD
added 2025/11/12 3:4 a.m.2 views

EUVD-2025-117082

Malicious code in solid-rose-mole npm...

6.6AI score
Exploits0
EUVD
EUVD
added 2025/11/12 3:4 a.m.1 views

EUVD-2025-117083

Malicious code in solid-coral-vole npm...

6.6AI score
Exploits0
NVD
NVD
added 2025/11/11 9:15 p.m.5 views

CVE-2025-40827

A vulnerability has been identified in Siemens Software Center All versions V3.5, Solid Edge SE2025 All versions V225.0 Update 10. The affected application is vulnerable to DLL hijacking. This could allow an attacker to execute arbitrary code via placing a crafted DLL file on the system...

8.5CVSS0.00141EPSS
Exploits0References1
NVD
NVD
added 2025/11/11 9:15 p.m.6 views

CVE-2025-40744

A vulnerability has been identified in Solid Edge SE2025 All versions V225.0 Update 11. Affected applications do not properly validate client certificates to connect to License Service endpoint. This could allow an unauthenticated remote attacker to perform man in the middle attacks...

8.7CVSS0.00193EPSS
Exploits0References1
EUVD
EUVD
added 2025/11/11 8:46 p.m.1 views

EUVD-2025-102132

Malicious code in solidllamaz3n npm...

6.6AI score
Exploits0
EUVD
EUVD
added 2025/11/11 8:46 p.m.1 views

EUVD-2025-102129

Malicious code in solidunicornz3n npm...

6.6AI score
Exploits0
EUVD
EUVD
added 2025/11/11 8:46 p.m.1 views

EUVD-2025-102130

Malicious code in solidtigerz3n npm...

6.6AI score
Exploits0
CVE
CVE
added 2025/11/11 8:20 p.m.13 views

CVE-2025-40827

Affected products and versions: Siemens Software Center (all versions < V3.5) and Solid Edge SE2025 (all versions

8.5CVSS7.3AI score0.00141EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/11/11 8:20 p.m.3 views

CVE-2025-40827

A vulnerability has been identified in Siemens Software Center All versions V3.5, Solid Edge SE2025 All versions V225.0 Update 10. The affected application is vulnerable to DLL hijacking. This could allow an attacker to execute arbitrary code via placing a crafted DLL file on the system...

8.5CVSS7.3AI score0.00141EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/11/11 8:20 p.m.6 views

CVE-2025-40827

A vulnerability has been identified in Siemens Software Center All versions V3.5, Solid Edge SE2025 All versions V225.0 Update 10. The affected application is vulnerable to DLL hijacking. This could allow an attacker to execute arbitrary code via placing a crafted DLL file on the system...

8.5CVSS0.00141EPSS
Exploits0References1
CVE
CVE
added 2025/11/11 8:20 p.m.10 views

CVE-2025-40744

Summary: CVE-2025-40744 affects Solid Edge SE2025 prior to V225.0 Update 11, where the License Service endpoint fails to properly validate client certificates, enabling a potential man-in-the-middle for unauthenticated attackers. Both Red Hat and PT security sources confirm the issue and the affe...

8.7CVSS6.6AI score0.00193EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/11/11 8:20 p.m.3 views

CVE-2025-40744

A vulnerability has been identified in Solid Edge SE2025 All versions V225.0 Update 11. Affected applications do not properly validate client certificates to connect to License Service endpoint. This could allow an unauthenticated remote attacker to perform man in the middle attacks...

8.7CVSS6.6AI score0.00193EPSS
Exploits0References1
Rows per page
Query Builder