CVSS: 8.5EPSS: 0%CPEs: 124EXPL: 0CVE-2025-30033
https://notcve.org/view.php?id=CVE-2025-30033
12 Aug 2025 — The affected setup component is vulnerable to DLL hijacking. This could allow an attacker to execute arbitrary code when a legitimate user installs an application that uses the affected setup component. • https://cert-portal.siemens.com/productcert/html/ssa-282044.html • CWE-427: Uncontrolled Search Path Element •
CVSS: 8.2EPSS: 0%CPEs: 6EXPL: 0CVE-2023-46280
https://notcve.org/view.php?id=CVE-2023-46280
14 May 2024 — A vulnerability has been identified in S7-PCT (All versions), Security Configuration Tool (SCT) (All versions), SIMATIC Automation Tool (All versions), SIMATIC BATCH V9.1 (All versions), SIMATIC NET PC Software V16 (All versions), SIMATIC NET PC Software V17 (All versions), SIMATIC NET PC Software V18 (All versions < V18 SP1), SIMATIC PCS 7 V9.1 (All versions), SIMATIC PDM V9.2 (All versions), SIMATIC Route Control V9.1 (All versions), SIMATIC STEP 7 V5 (All versions), SIMATIC WinCC OA V3.17 (All versions),... • https://cert-portal.siemens.com/productcert/html/ssa-962515.html • CWE-125: Out-of-bounds Read •