CVE-2025-40801
A vulnerability has been identified in COMOS V10.6 (All versions < V10.6.1), COMOS V10.6 (All versions < V10.6.1), JT Bi-Directional Translator for STEP (All versions), NX V2412 (All versions < V2412.8900 with Cloud Entitlement (bundled as NX X)), NX V2506 (All versions < V2506.6000 with Cloud Entitlement (bundled as NX X)), Simcenter 3D (All versions < V2506.6000 with Cloud Entitlement (bundled as Simcenter X Mechanical)), Simcenter Femap (All versions < V2506.0002 with Cloud Entitlement (bundled as Simcenter X Mechanical)), Simcenter Studio (All versions < V2506.0001), Simcenter System Architect (All versions < V2506.0001), Tecnomatix Plant Simulation (All versions < V2504.0007). The SALT SDK is missing server certificate validation while establishing TLS connections to the authorization server. This could allow an attacker to perform a man-in-the-middle attack.
EPSS 0.03% · 7.5th percentile
Risk Scores
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Siemens | Simcenter Femap | 0 |
| Siemens | JT Bi-Directional Translator for STEP | 0 |
| Siemens | Simcenter 3D | 0 |
| Siemens | Simcenter Studio | 0 |
| Siemens | COMOS V10.6 | 0, 0 |
| Siemens | NX V2506 | 0 |
| Siemens | Tecnomatix Plant Simulation | 0 |
| Siemens | NX V2412 | 0 |
| Siemens | Simcenter System Architect | 0 |
Exploit Intelligence
- CIRCL seen: CVE-2025-40801 (circl-sighting)
- CIRCL seen: CVE-2025-40801 (circl-sighting)
- CIRCL seen: CVE-2025-40801 (circl-sighting)
- https://cert-portal.siemens.com/productcert/html/ssa-710408.html (circl)
- https://cert-portal.siemens.com/productcert/html/ssa-212953.html (circl)
Timeline
- Apr 16, 2025 CVE ID Reserved
- Dec 9, 2025 EPSS Score
- Dec 9, 2025 CVE Published
- Dec 9, 2025 PoC Published
- Dec 11, 2025 PoC Published
- Dec 13, 2025 EPSS Score
- Dec 17, 2025 EPSS Score
- Dec 22, 2025 EPSS Score
- Dec 26, 2025 EPSS Score
- Dec 30, 2025 EPSS Score
- Jan 3, 2026 EPSS Score
- Jan 7, 2026 EPSS Score