Unrated severityNVD Advisory· Published Mar 11, 2025· Updated Mar 11, 2025

CVE-2025-25266

Description

A vulnerability has been identified in Tecnomatix Plant Simulation V2302 (All versions < V2302.0021), Tecnomatix Plant Simulation V2404 (All versions < V2404.0010). The affected application does not properly restrict access to the file deletion functionality. This could allow an unauthorized attacker to delete files even when access to the system should be prohibited, resulting in potential data loss or unauthorized modification of system files.

Affected products

Tecnomatix/Plant Simulationllm-create
Range: V2302 < V2302.0021, V2404 < V2404.0010
Siemens Foundation/Tecnomatix Plant Simulationcpe-rescue2 versions
0+ 1 more
- (no CPE)range: 0
- (no CPE)range: 0

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

cert-portal.siemens.com/productcert/html/ssa-507653.htmlmitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000