SSA-523418 — Vulnetix

SSA-523418 PUBLISHED CVSS 7.5 HIGH

Desigo CC deployments that use Installed Client are impacted by an information disclosure vulnerability which could result in information leak from the Desigo CC server. The other Desigo CC client options, Windows App Client and Flex Client, are not affected by this vulnerability. Siemens recommends specific countermeasures for products where fixes are not, or not yet available.

Risk Scores

CVSS 3.1

7.5

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Affected Products

Vendor	Product	Versions
	Desigo CC

Exploit Intelligence

https://cert-portal.siemens.com/productcert/html/ssa-523418.html (circl)
https://cert-portal.siemens.com/productcert/csaf/ssa-523418.json (circl)

Timeline

May 13, 2025 CVE Published

References

https://cert-portal.siemens.com/productcert/html/ssa-523418.html advisory
https://cert-portal.siemens.com/productcert/csaf/ssa-523418.json advisory

Open in Interactive Console →