Sign-up

ID

VAR-202508-3769


TITLE

Multiple SIEMENS product privilege escalation vulnerabilities

Trust: 0.6

sources: CNVD: CNVD-2025-19351

DESCRIPTION

The SIMATIC Information Server is used for reporting and visualization of process data stored in the SIMATIC Process Historian. SIMATIC PDM MS provides independent field device management, diagnostics, and data acquisition across multiple communication protocols, independent of the automation project. The SIMATIC Process Historian is the long-term archiving system for SIMATIC PCS 7, SIMATIC WinCC, and SIMATIC PCS neo. It stores process values, alarms, and batch data from production plants in its database and provides historical process data for reporting and visualization applications. SIMATIC WinCC Open Architecture (OA) is part of the SIMATIC HMI family. It is designed for applications requiring a high degree of customer-specific adaptability, large or complex applications, and applications and projects with specific system requirements or functionality. Several SIEMENS products contain a privilege escalation vulnerability that could be exploited by an attacker to escalate privileges.

Trust: 0.6

sources: CNVD: CNVD-2025-19351

IOT TAXONOMY

category:['ICS']sub_category: -

Trust: 0.6

sources: CNVD: CNVD-2025-19351

AFFECTED PRODUCTS

vendor:siemensmodel:simatic pdm maintenance station allscope:eqversion:v5.0

Trust: 0.6

vendor:siemensmodel:simatic process historian allscope:eqversion:2020

Trust: 0.6

vendor:siemensmodel:simatic process historian allscope:eqversion:2022

Trust: 0.6

vendor:siemensmodel:simatic process historian allscope:eqversion:2024

Trust: 0.6

vendor:siemensmodel:simatic information server allscope:eqversion:2020

Trust: 0.6

vendor:siemensmodel:simatic information server allscope:eqversion:2022

Trust: 0.6

vendor:siemensmodel:simatic information server allscope:eqversion:2024

Trust: 0.6

vendor:siemensmodel:simatic wincc oa p032scope:eqversion:v3.18<v3.18

Trust: 0.6

vendor:siemensmodel:simatic wincc oa p020scope:eqversion:v3.19<v3.19

Trust: 0.6

vendor:siemensmodel:simatic wincc oa p008scope:eqversion:v3.20<v3.20

Trust: 0.6

sources: CNVD: CNVD-2025-19351

CVSS

SEVERITY

CVSSV2

CVSSV3

CNVD: CNVD-2025-19351
value: HIGH

Trust: 0.6

CNVD: CNVD-2025-19351
severity: HIGH
baseScore: 7.2
vectorString: AV:L/AC:L/AU:N/C:C/I:C/A:C
accessVector: LOCAL
accessComplexity: LOW
authentication: NONE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 3.9
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.6

sources: CNVD: CNVD-2025-19351

PATCH

title:Patch for Multiple SIEMENS product privilege escalation vulnerabilitiesurl:https://www.cnvd.org.cn/patchInfo/show/723046

Trust: 0.6

sources: CNVD: CNVD-2025-19351

EXTERNAL IDS

db:SIEMENSid:SSA-331739

Trust: 0.6

db:CNVDid:CNVD-2025-19351

Trust: 0.6

sources: CNVD: CNVD-2025-19351

REFERENCES

url:https://cert-portal.siemens.com/productcert/html/ssa-331739.html

Trust: 0.6

sources: CNVD: CNVD-2025-19351

SOURCES

db:CNVDid:CNVD-2025-19351

LAST UPDATE DATE

2025-10-16T23:32:28.301000+00:00


SOURCES UPDATE DATE

db:CNVDid:CNVD-2025-19351date:2025-08-22T00:00:00

SOURCES RELEASE DATE

db:CNVDid:CNVD-2025-19351date:2025-08-12T00:00:00