CNNVD-202512-1527 Information
CNNVD ID
CNNVD-202512-1527
Related CVE
- CNNVD Published: 2025-12-09
Description (Chinese)
Siemens Simcenter Femap等都是德国西门子(Siemens)公司的产品。Siemens Simcenter Femap是一款尖端工程学仿真应用程序。Siemens NX是Siemens COMOS是一个流程工业运营管理软件。 Siemens多款产品存在信任管理问题漏洞,该漏洞源于缺少服务器证书验证,可能导致中间人攻击。以下产品受到影响:Siemens COMOS、NX、Simcenter 3D、Simcenter Femap和Solid Edge SE2025。
Description (English)
Siemens Simcenter Femap and others are products of Siemens Germany. Siemens Simpson Femap is a sophisticated engineering simulation application. Siemens NX is Siemens COMOS, a process industry operating management software. There is a trust management gap in multiple Siemens products, which stems from a lack of server certification and may lead to attacks by intermediaries. The following products were affected: Siemens COMOS, NX, Simcenter 3D, Simcenter Femap and Solid Edge SE2025.
Hazard Level
Medium
Vulnerability Type
信任管理问题
Affected Vendor
西门子
Published
2025-12-09
Last Modified
2026-02-24
References
https://cert-portal.siemens.com/productcert/html/ssa-212953.html https://cert-portal.siemens.com/productcert/html/ssa-868571.html
Patch
https://cert-portal.siemens.com/productcert/html/ssa-868571.html
Share on: