CVE-2026-33892 — Vulnetix

CVE-2026-33892 PUBLISHED CVSS 7.099999904632568 HIGH

Industrial Edge Management contains an authorization bypass vulnerability that could be exploited by an unauthenticated remote attacker to circumvent authentication and to access connected Industrial Edge Devices through the remote connection feature. Siemens has released new versions for the affected products and recommends to update to the latest versions. The following versions of Siemens Industrial Edge Management are affected: Industrial Edge Management Pro V1 vers:intdot/>=1.7.6|Industrial Edge Management Pro V2 vers:intdot/>=2.0.0|Industrial Edge Management Virtual vers:intdot/>=2.2.0| CVSS Vendor Equipment Vulnerabilities v3 7.1 Siemens Siemens Industrial Edge Management Authentication Bypass by Primary Weakness Background Critical Infrastructure Sectors: Critical Manufacturing Countries/Areas Deployed: Worldwide Company Headquarters Location: Germany

Risk Scores

CVSS v3.1

7.099999904632568

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L

Timeline

Apr 14, 2026 CVE Published
Apr 14, 2026 PoC Published
Apr 14, 2026 Security Advisory
Apr 14, 2026 CVE Updated

References

Open in Interactive Console →