CVE-2025-40801

Summary

A vulnerability has been identified in COMOS V10.6 (All versions < V10.6.1), COMOS V10.6 (All versions < V10.6.1), JT Bi-Directional Translator for STEP (All versions), NX V2412 (All versions < V2412.8900 with Cloud Entitlement (bundled as NX X)), NX V2506 (All versions < V2506.6000 with Cloud Entitlement (bundled as NX X)), Simcenter 3D (All versions < V2506.6000 with Cloud Entitlement (bundled as Simcenter X Mechanical)), Simcenter Femap (All versions < V2506.0002 with Cloud Entitlement (bundled as Simcenter X Mechanical)), Simcenter Studio (All versions < V2506.0001), Simcenter System Architect (All versions < V2506.0001), Tecnomatix Plant Simulation (All versions < V2504.0007). The SALT SDK is missing server certificate validation while establishing TLS connections to the authorization server. This could allow an attacker to perform a man-in-the-middle attack.

Affected Software

VendorProductVersion RangeStatus
SiemensCOMOS V10.60 < V10.6.1affected
SiemensCOMOS V10.60 < V10.6.1affected
SiemensJT Bi-Directional Translator for STEP0 < *affected
SiemensNX V24120 < V2412.8900affected
SiemensNX V25060 < V2506.6000affected
SiemensSimcenter 3D0 < V2506.6000affected
SiemensSimcenter Femap0 < V2506.0002affected
SiemensSimcenter Studio0 < V2506.0001affected
SiemensSimcenter System Architect0 < V2506.0001affected
SiemensTecnomatix Plant Simulation0 < V2504.0007affected

Weaknesses

  • CWE-295: CWE-295: Improper Certificate Validation

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References