You are using an out of date browser. It may not display this or other websites correctly. You should upgrade or use an alternative browser.
ew_createdir
About this tag
The tag ew_createdir is associated with a local privilege escalation vulnerability (CVE-2025-43715) in the Nullsoft Scriptable Install System (NSIS) code used by Siemens SIMOTION Tools on Windows. The flaw allows an unprivileged local attacker to escalate to SYSTEM during the installation process. Discussions cover the advisory from Siemens ProductCERT and U.S. cyber authorities, along with mitigation steps. This tag is relevant for Windows security, enterprise IT, and industrial control system environments where SIMOTION software is deployed.
Nullsoft Scriptable Install System (NSIS) code used inside several SIMOTION setup components contains a local privilege‑escalation flaw that Siemens and U.S. cyber authorities have republished as a coordinated advisory, warning that installing affected SIMOTION Tools on Windows can allow an...