SSA-535115 — Vulnetix

SSA-535115 PUBLISHED CVSS 7.800000190734863 HIGH

Siemens NX is affected by missing data validation vulnerability that could allow an attacker with local access on a compromised system to interfere with internal data during the PDF export process that could potentially lead to arbitrary code execution. Siemens has released a new version of NX which resolves the data tampering vulnerability.

Risk Scores

CVSS v3.1

7.800000190734863

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Affected Products

Vendor	Product	Versions
	NX
	NX (Managed Mode)

Timeline

Feb 10, 2026 CVE Published
Mar 10, 2026 CVE Updated

References

https://cert-portal.siemens.com/productcert/html/ssa-535115.html advisory
https://cert-portal.siemens.com/productcert/csaf/ssa-535115.json advisory
https://support.sw.siemens.com/product/209349590/ fix

Open in Interactive Console →