You are using an out of date browser. It may not display this or other websites correctly. You should upgrade or use an alternative browser.
cve-2025-40798
About this tag
The tag cve-2025-40798 covers a critical stack-based buffer overflow vulnerability in Siemens User Management Component (UMC), as detailed in advisory SSA-722410. This CVE enables remote code execution and is part of a set of flaws including three out-of-bounds read issues causing denial-of-service. Siemens recommends updating UMC to V2.15.1.3. Discussions on WindowsForum.com focus on the urgency of patching, inventory of affected Siemens product lines, and implementing network hardening or compensating controls where vendor fixes are unavailable. The tag is relevant for IT administrators and security professionals managing Siemens industrial environments.
Siemens has published a high‑severity ProductCERT advisory (SSA‑722410) describing multiple remotely exploitable vulnerabilities in its User Management Component (UMC), including a stack‑based buffer overflow that Siemens scores as critical and three separate out‑of‑bounds read issues that can...
2.15.1.3
buffer overflow
cisa
cve-2025-40795
cve-2025-40796
cve-2025-40797
cve-2025-40798
dos
ics security
industrial control systems
ot security
patch management
productcert
remote code execution
siemens
siemens vulnerabilities
umc
umc v2.15.1.3
windows server