CNNVD-202509-1428 Information
CNNVD ID
CNNVD-202509-1428
Related CVE
- CNNVD Published: 2025-09-09
Description (Chinese)
Siemens SIMATIC PCS neo和Siemens User Management Component都是德国西门子(Siemens)公司的产品。Siemens SIMATIC PCS neo是一个分布式控制系统。Siemens User Management Component是一个维护西门子软件的组件。 Siemens SIMATIC PCS neo和Siemens User Management Component存在安全漏洞,该漏洞源于栈缓冲区溢出,可能导致远程代码执行或拒绝服务。以下版本受到影响:SIMATIC PCS neo V4.1版本、V5.0版本和UMC V2.15.1.3之前版本。
Description (English)
Siemens SIMATIC PCS neo and Siemens User Management Component are products of Siemens, Germany. Siemens SIMATIC PCS neo is a distributed control system. Siemens User Management Component is a component for the maintenance of Siemens software. There is a security loophole between Siemens SIMATIC PCS neo and Siemens User Management Component, which originates from the spilling of the silo buffer zone, which may lead to remote code execution or denial of services. The following versions were affected: SIMATIC PCS neo V4.1, V5.0 and UMC V2.15.1.3.
Hazard Level
Low
Vulnerability Type
其他
Affected Vendor
西门子
Published
2025-09-09
Last Modified
2026-02-24
References
https://cert-portal.siemens.com/productcert/html/ssa-722410.html