Siemens has disclosed a critical authorization‑bypass flaw in its Industrial Edge product family (tracked as CVE‑2025‑40805) that allows unauthenticated remote actors to circumvent authentication on specific API endpoints and impersonate legitimate users; Siemens has issued updated releases for...
Siemens has disclosed a critical authorization bypass in its Industrial Edge Device Kit that allows unauthenticated remote actors to impersonate legitimate users by abusing improperly protected API endpoints — a flaw Siemens and U.S. authorities rate at the highest severity and that demands...
