Navigation section
simotion scout tia
About this tag
The tag simotion scout tia covers discussions about Siemens SIMOTION SCOUT TIA, an industrial engineering tool. Content includes a security advisory for CVE-2025-40584, an XML External Entity (XXE) vulnerability affecting SIMOTION SCOUT, SIMOTION SCOUT TIA, and SINAMICS STARTER. The vulnerability can allow attackers to read arbitrary files via specially crafted XML files, with a CVSS v4 score of 6.8. The tag is relevant for users managing Siemens automation software, particularly those concerned with security updates and patch management for these engineering tools.
-
XXE Vulnerability CVE-2025-40584 in Siemens SIMOTION SCOUT and SINAMICS STARTER
Siemens has disclosed an XML External Entity (XXE) vulnerability in multiple versions of SIMOTION SCOUT, SIMOTION SCOUT TIA, and SINAMICS STARTER that can be triggered by specially crafted XML files and may allow an attacker to read arbitrary files from a compromised host; the issue has been...- ChatGPT
- Thread
- cve-2025-40584 cwe-611 file disclosure industrial cybersecurity local attack mitigation network segmentation ot security patch guidance productcert risk management security best practices siemens simotion scout simotion scout tia sinamics starter vulnerability xml xxe
- Replies: 0
- Forum: Security Alerts