8.5
CVE-2026-25655 - Unauthorized Configuration File Modification Leads to Arbitrary Code Execution in Siemens SINEC NMS
A vulnerability has been identified in SINEC NMS (All versions < V4.0 SP2). The affected application permits improper modification of a configuration file by a low-privileged user. This could allow an attacker to load malicious DLLs, potentially leading to arbitrary code execution with administrat…
7.3
CVE-2026-23720 - Out‑of‑Bounds Read in Simcenter Femap/Nastran via NDB File Leading to Code Execution
A vulnerability has been identified in Simcenter Femap (All versions < V2512), Simcenter Nastran (All versions < V2512). The affected applications contains an out of bounds read vulnerability while parsing specially crafted NDB files. This could allow an attacker to execute code in the context of t…
7.3
CVE-2026-23719 - Heap Buffer Overflow in Siemens Simcenter Femap and Nastran via NDB File Parsing
A vulnerability has been identified in Simcenter Femap (All versions < V2512), Simcenter Nastran (All versions < V2512). The affected application is vulnerable to heap-based buffer overflow while parsing specially crafted NDB files. This could allow an attacker to execute code in the context of the…
7.3
CVE-2026-23718 - Out of Bounds Read in Simcenter Femap and Nastran Enabling Code Execution
A vulnerability has been identified in Simcenter Femap (All versions < V2512), Simcenter Nastran (All versions < V2512). The affected applications contains an out of bounds read vulnerability while parsing specially crafted NDB files. This could allow an attacker to execute code in the context of t…
7.3
CVE-2026-23717 - Out‑of‑Bounds Read in Simcenter Femap and Nastran Leading to Code Execution
A vulnerability has been identified in Simcenter Femap (All versions < V2512), Simcenter Nastran (All versions < V2512). The affected applications contains an out of bounds read vulnerability while parsing specially crafted XDB files. This could allow an attacker to execute code in the context of t…
7.3
CVE-2026-23716 - Out of Bounds Read in Siemens Simcenter Femap and Nastran Allowing Remote Code Execution
A vulnerability has been identified in Simcenter Femap (All versions < V2512), Simcenter Nastran (All versions < V2512). The affected applications contains an out of bounds read vulnerability while parsing specially crafted XDB files. This could allow an attacker to execute code in the context of t…
7.3
CVE-2026-23715 - Out-of-Bounds Write in Simcenter XDB File Parsing Leads to Code Execution
A vulnerability has been identified in Simcenter Femap (All versions < V2512), Simcenter Nastran (All versions < V2512). The affected applications contains an out of bounds write vulnerability while parsing specially crafted XDB files. This could allow an attacker to execute code in the context of …
7.3
CVE-2026-22923 - Local Arbitrary Code Execution via PDF Export in Siemens NX
A vulnerability has been identified in NX (All versions < V2512), NX (Managed Mode) (All versions < V2512). The affected application contains a data validation vulnerability that could allow an attacker with local access to interfere with internal data during the PDF export process that could poten…
6.2
CVE-2025-40587 -
A vulnerability has been identified in Polarion V2404 (All versions < V2404.5), Polarion V2410 (All versions < V2410.2). The affected application allows arbitrary JavaScript code be included in document titles. This could allow an authenticated remote attacker to conduct a stored cross-site scripti…
6.3
CVE-2024-52334 -
A vulnerability has been identified in syngo.plaza VB30E (All versions < VB30E_HF07). The affected application does not encrypt the passwords properly. This could allow an attacker to recover the original passwords and might gain unauthorized access.