SSA-916339 — Vulnetix

SSA-916339 PUBLISHED CVSS 5.300000190734863 MEDIUM

Apogee PXC and Talon TC contain a vulnerability that could allow an attacker to download the device encrypted database file. Siemens is preparing fix versions and recommends specific countermeasures for products where fixes are not, or not yet available.

Risk Scores

CVSS 3.1

5.300000190734863

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Affected Products

Vendor	Product	Versions
	TALON TC Series (BACnet)
	APOGEE PXC Series (P2 Ethernet)
	APOGEE PXC Series (BACnet)

Exploit Intelligence

https://cert-portal.siemens.com/productcert/html/ssa-916339.html (circl)
https://cert-portal.siemens.com/productcert/csaf/ssa-916339.json (circl)
vulns.js (github-poc)
vulns.js (github-poc)

Timeline

Sep 9, 2025 CVE Published

References

https://cert-portal.siemens.com/productcert/html/ssa-916339.html advisory
https://cert-portal.siemens.com/productcert/csaf/ssa-916339.json advisory

Open in Interactive Console →