Siemens Solid Edge Se2025 vulnerabilities

CVE-2025-40745 [MEDIUM] CWE-295 CVE-2025-40745: A vulnerability has been identified in Siemens Software Center (All versions < V3.5.8.2), Simcenter A vulnerability has been identified in Siemens Software Center (All versions < V3.5.8.2), Simcenter 3D (All versions < V2506.6000), Simcenter Femap (All versions < V2506.0002), Simcenter STAR-CCM+ (All versions < V2602), Solid Edge SE2025 (All versions < V225.0 Update 13), Solid Edge SE2026 (All versions < V226.0 Update 04), Tecnomatix Plant Simulati

CVE-2025-40800 [CRITICAL] CWE-295 CVE-2025-40800: A vulnerability has been identified in COMOS V10.6 (All versions < V10.6.1), COMOS V10.6 (All versio A vulnerability has been identified in COMOS V10.6 (All versions < V10.6.1), COMOS V10.6 (All versions < V10.6.1), NX V2412 (All versions < V2412.8700), NX V2506 (All versions < V2506.6000), Simcenter 3D (All versions < V2506.6000), Simcenter Femap (All versions < V2506.0002), Solid Edge SE2025 (All versions < V225.0 Update 10), Solid Edge SE2026

CVE-2025-40827 [HIGH] CWE-427 CVE-2025-40827: A vulnerability has been identified in Siemens Software Center (All versions < V3.5), Solid Edge SE2 A vulnerability has been identified in Siemens Software Center (All versions < V3.5), Solid Edge SE2025 (All versions < V225.0 Update 10). The affected application is vulnerable to DLL hijacking. This could allow an attacker to execute arbitrary code via placing a crafted DLL file on the system.

CVE-2025-40744 [HIGH] CWE-295 CVE-2025-40744: A vulnerability has been identified in Solid Edge SE2025 (All versions < V225.0 Update 11). Affected A vulnerability has been identified in Solid Edge SE2025 (All versions < V225.0 Update 11). Affected applications do not properly validate client certificates to connect to License Service endpoint. This could allow an unauthenticated remote attacker to perform man in the middle attacks.

CVE-2025-40809 [HIGH] CWE-787 CVE-2025-40809: A vulnerability has been identified in Solid Edge SE2024 (All versions < V224.0 Update 14), Solid Ed A vulnerability has been identified in Solid Edge SE2024 (All versions < V224.0 Update 14), Solid Edge SE2025 (All versions < V225.0 Update 6). The affected applications contains an out of bounds write vulnerability while parsing specially crafted PRT files. This could allow an attacker to crash the application or execute code in the context of the cu

CVE-2025-40810 [HIGH] CWE-787 CVE-2025-40810: A vulnerability has been identified in Solid Edge SE2024 (All versions < V224.0 Update 14), Solid Ed A vulnerability has been identified in Solid Edge SE2024 (All versions < V224.0 Update 14), Solid Edge SE2025 (All versions < V225.0 Update 6). The affected applications contains an out of bounds write vulnerability while parsing specially crafted PRT files. This could allow an attacker to crash the application or execute code in the context of the cu

CVE-2025-40812 [HIGH] CWE-125 CVE-2025-40812: A vulnerability has been identified in Solid Edge SE2024 (All versions < V224.0 Update 14), Solid Ed A vulnerability has been identified in Solid Edge SE2024 (All versions < V224.0 Update 14), Solid Edge SE2025 (All versions < V225.0 Update 6). The affected applications contains an out of bounds read vulnerability while parsing specially crafted PRT files. This could allow an attacker to crash the application or execute code in the context of the cur

CVE-2025-40811 [HIGH] CWE-125 CVE-2025-40811: A vulnerability has been identified in Solid Edge SE2024 (All versions < V224.0 Update 14), Solid Ed A vulnerability has been identified in Solid Edge SE2024 (All versions < V224.0 Update 14), Solid Edge SE2025 (All versions < V225.0 Update 6). The affected applications contains an out of bounds read vulnerability while parsing specially crafted PRT files. This could allow an attacker to crash the application or execute code in the context of the cur

CVE-2025-40739 [HIGH] CWE-125 CVE-2025-40739: A vulnerability has been identified in Solid Edge SE2025 (All versions < V225.0 Update 5). The affec A vulnerability has been identified in Solid Edge SE2025 (All versions < V225.0 Update 5). The affected applications contain an out of bounds read past the end of an allocated structure while parsing specially crafted PAR files. This could allow an attacker to execute code in the context of the current process.

CVE-2025-40740 [HIGH] CWE-125 CVE-2025-40740: A vulnerability has been identified in Solid Edge SE2025 (All versions < V225.0 Update 5). The affec A vulnerability has been identified in Solid Edge SE2025 (All versions < V225.0 Update 5). The affected applications contain an out of bounds read past the end of an allocated structure while parsing specially crafted PAR files. This could allow an attacker to execute code in the context of the current process.

CVE-2025-40741 [HIGH] CWE-121 CVE-2025-40741: A vulnerability has been identified in Solid Edge SE2025 (All versions < V225.0 Update 5). The affec A vulnerability has been identified in Solid Edge SE2025 (All versions < V225.0 Update 5). The affected applications contain a stack based overflow vulnerability while parsing specially crafted CFG files. This could allow an attacker to execute code in the context of the current process.

CVE-2024-54091 [HIGH] CWE-787 CVE-2024-54091: A vulnerability has been identified in Solid Edge SE2024 (All versions < V224.0 Update 12), Solid Ed A vulnerability has been identified in Solid Edge SE2024 (All versions < V224.0 Update 12), Solid Edge SE2025 (All versions < V225.0 Update 3). The affected application contains an out of bounds write past the end of an allocated buffer while parsing X_T data or a specially crafted file in X_T format. This could allow an attacker to execute code in th