Changeflow GovPing Data Privacy & Cybersecurity Improper Certificate Validation Flaw Affects Mu...
Priority review Guidance Added Final

Improper Certificate Validation Flaw Affects Multiple Siemens Apps

Favicon for www.cisa.gov CISA ICS-CERT Advisories
Published
Detected
Email

Summary

CISA republished Siemens ProductCERT advisory SSA-981622 warning of improper certificate validation in Siemens Analytics Toolkit (CVE-2025-40745). Affected applications fail to properly validate client certificates when connecting to Analytics Service endpoints, potentially allowing unauthenticated remote attackers to conduct man-in-the-middle attacks. Seven Siemens applications are affected across Simcenter, Solid Edge, and Tecnomatix product lines. Siemens has released vendor fixes with specific version updates for each affected product.

“Affected applications do not properly validate client certificates to connect to Analytics Service endpoint. This could allow an unauthenticated remote attacker to perform man in the middle attacks.”

CISA , verbatim from source
Why this matters

Organizations running Siemens Simcenter, Solid Edge, or Tecnomatix software in operational technology or engineering environments should verify whether their deployments expose Analytics Service endpoints externally or across untrusted network segments. The man-in-the-middle attack vector requires network positioning, so the immediate remediation priority should focus on systems accessible from business networks or connected to VPN-fed remote access solutions. Given the LOW CVSS score and network-level attack complexity, this is a lower-severity but broad-surface vulnerability affecting engineering workstation populations.

AI-drafted from the source document, validated against GovPing's analyst note standards . For the primary regulatory language, read the source document .
Published by CISA on cisa.gov . Detected, standardized, and enriched by GovPing. Review our methodology and editorial standards .
View original document View source feed page

What changed

CISA republished a Siemens ProductCERT security advisory describing an improper certificate validation vulnerability (CWE-295) in multiple Siemens Analytics Toolkit applications. The flaw could allow an unauthenticated remote attacker to perform man-in-the-middle attacks by failing to properly validate client certificates to the Analytics Service endpoint. The CVSS v3.1 base score is 3.7 (LOW severity) with vector AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N.

Organizations using affected Siemens applications (Software Center, Simcenter 3D, Simcenter Femap, Simcenter STAR-CCM+, Solid Edge SE2025/SE2026, Tecnomatix Plant Simulation) should apply vendor-provided patches immediately. CISA recommends minimizing network exposure for control system devices, locating industrial networks behind firewalls, and using VPNs for remote access when necessary. Critical manufacturing sector entities are primarily affected given the deployment scope of these industrial analytics tools.

What to do next

  1. Update Siemens Software Center to V3.5.8.2 or later
  2. Update Simcenter 3D to V2506.6000 or later
  3. Update Tecnomatix Plant Simulation to V2504.0008 or later

Archived snapshot

Apr 22, 2026

GovPing captured this document from the original source. If the source has since changed or been removed, this is the text as it existed at that time.

ICS Advisory

Siemens Analytics Toolkit

Release Date

April 21, 2026

Alert Code ICSA-26-111-04 Related topics: Industrial Control System Vulnerabilities, Industrial Control Systems View CSAF

Summary

Multiple Siemens applications are affected by improper certificate validation in Siemens Analytics Toolkit. This could allow an unauthenticated remote attacker to perform man in the middle attacks. Siemens has released new versions for the affected products and recommends to update to the latest versions.

The following versions of Siemens Analytics Toolkit are affected:

  • Siemens Software Center vers:intdot/<3.5.8.2 (CVE-2025-40745)
  • Simcenter 3D vers:intdot/<2506.6000 (CVE-2025-40745)
  • Simcenter Femap vers:intdot/<2506.0002 (CVE-2025-40745)
  • Simcenter STAR-CCM+ vers:intdot/<2602 (CVE-2025-40745)
  • Solid Edge SE2025
  • Solid Edge SE2026
  • Tecnomatix Plant Simulation vers:intdot/<2504.0008 (CVE-2025-40745)
CVSS Vendor Equipment Vulnerabilities
v3 3.7 Siemens Siemens Analytics Toolkit Improper Certificate Validation

Background

  • Critical Infrastructure Sectors: Critical Manufacturing
  • Countries/Areas Deployed: Worldwide
  • Company Headquarters Location: Germany

Vulnerabilities

Affected applications do not properly validate client certificates to connect to Analytics Service endpoint. This could allow an unauthenticated remote attacker to perform man in the middle attacks.

View CVE Details

Affected Products

Siemens Analytics Toolkit

Vendor:
Siemens Product Version:
Siemens Software Center, Simcenter 3D, Simcenter Femap, Simcenter STAR-CCM+, Solid Edge SE2025, Solid Edge SE2026, Tecnomatix Plant Simulation Product Status:
known_affected

Remediations

Vendor fix
Update to V225.0 Update 13 or later version
https://support.sw.siemens.com/product/246738425/

Vendor fix
Update to V226.0 Update 04 or later version
https://support.sw.siemens.com/product/246738425/

Vendor fix
Update to V2504.0008 or later version
https://support.sw.siemens.com/product/297028302/

Vendor fix
Update to V2506.0002 or later version
https://support.sw.siemens.com/product/275652363/

Vendor fix
Update to V2506.6000 or later version
https://support.sw.siemens.com/product/289054037/

Vendor fix
Update to V2602 or later version
https://support.sw.siemens.com/product/226870983/

Vendor fix
Update to V3.5.8.2 or later version
https://www.sw.siemens.com/en-US/siemens-software-center/

Relevant CWE: CWE-295 Improper Certificate Validation

Metrics

CVSS Version Base Score Base Severity Vector String
3.1 3.7 LOW CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

Acknowledgments

  • Siemens ProductCERT reported this vulnerability to CISA.

General Recommendations

As a general security measure, Siemens strongly recommends to protect network access to devices with appropriate mechanisms. In order to operate the devices in a protected IT environment, Siemens recommends to configure the environment according to Siemens' operational guidelines for Industrial Security (Download: https://www.siemens.com/cert/operational-guidelines-industrial-security), and to follow the recommendations in the product manuals. Additional information on Industrial Security by Siemens can be found at: https://www.siemens.com/industrialsecurity

Additional Resources

For further inquiries on security vulnerabilities in Siemens products and solutions, please contact the Siemens ProductCERT: https://www.siemens.com/cert/advisories

Terms of Use

The use of Siemens Security Advisories is subject to the terms and conditions listed on: https://www.siemens.com/productcert/terms-of-use.

Legal Notice and Terms of Use

This product is provided subject to this Notification (https://www.cisa.gov/notification) and this Privacy & Use policy (https://www.cisa.gov/privacy-policy).

Recommended Practices

CISA recommends users take defensive measures to minimize the exploitation risk of these vulnerabilities.

Minimize network exposure for all control system devices and/or systems, and ensure they are not accessible from the internet.

Locate control system networks and remote devices behind firewalls and isolate them from business networks.

When remote access is required, use more secure methods, such as Virtual Private Networks (VPNs), recognizing VPNs may have vulnerabilities and should be updated to the most recent version available. Also recognize VPN is only as secure as its connected devices.

CISA reminds organizations to perform proper impact analysis and risk assessment prior to deploying defensive measures.

CISA also provides a section for control systems security recommended practices on the ICS webpage on cisa.gov. Several CISA products detailing cyber defense best practices are available for reading and download, including Improving Industrial Control Systems Cybersecurity with Defense-in-Depth Strategies.

CISA encourages organizations to implement recommended cybersecurity strategies for proactive defense of ICS assets. Additional mitigation guidance and recommended practices are publicly available on the ICS webpage at cisa.gov in the technical information paper, ICS-TIP-12-146-01B--Targeted Cyber Intrusion Detection and Mitigation Strategies.

Organizations observing suspected malicious activity should follow established internal procedures and report findings to CISA for tracking and correlation against other incidents.

Advisory Conversion Disclaimer

This ICSA is a verbatim republication of Siemens ProductCERT SSA-981622 from a direct conversion of the vendor's Common Security Advisory Framework (CSAF) advisory. This is republished to CISA's website as a means of increasing visibility and is provided "as-is" for informational purposes only. CISA is not responsible for the editorial or technical accuracy of republished advisories and provides no warranties of any kind regarding any information contained within this advisory. Further, CISA does not endorse any commercial product or service. Please contact Siemens ProductCERT directly for any questions regarding this advisory.

Revision History

  • Initial Release Date: 2026-04-14
Date Revision Summary
2026-04-14 1 Publication Date
2026-04-21 2 Initial CISA Republication of Siemens ProductCERT SSA-981622 advisory

Legal Notice and Terms of Use

This product is provided subject to this Notification and this Privacy & Use policy.

Vendor

  • Siemens

Tags

Sector: Critical Manufacturing Sector Topics: Industrial Control System Vulnerabilities, Industrial Control Systems

Please share your thoughts

We recently updated our anonymous product survey; we welcome your feedback.

Related Advisories

Apr 21, 2026

ICS Advisory | ICSA-26-111-05

Hardy Barth Salia EV Charge Controller

Apr 21, 2026

ICS Advisory | ICSA-26-111-02

Siemens RUGGEDCOM CROSSBOW Secure Access Manager Primary

Apr 21, 2026

ICS Advisory | ICSA-26-111-03

Siemens SINEC NMS

Apr 21, 2026

ICS Advisory | ICSA-26-111-12

SenseLive X3050

Related changes

Favicon for www.cisa.gov Siemens Industrial Edge Management Auth Bypass, CVSS 7.1
Priority review Apr 22, 2026 CISA ICS-CERT Advisories Data Privacy & Cybersecurity
Favicon for www.cisa.gov Siemens RUGGEDCOM CROSSBOW SAC SQLite Vulnerability CVE-2025-6965
Priority review Apr 22, 2026 CISA ICS-CERT Advisories Data Privacy & Cybersecurity
Favicon for www.cisa.gov Horner Automation Cscape and XL4, XL7 PLC Weak Password Vulnerability
Priority review Apr 17, 2026 CISA ICS-CERT Advisories Data Privacy & Cybersecurity

Get daily alerts for CISA ICS-CERT Advisories

Daily digest delivered to your inbox.

Free. Unsubscribe anytime.

Source

Favicon for www.cisa.gov
CISA ICS-CERT Advisories cisa.gov/rss.xml
Data Privacy & Cybersecurity

About this page

What is GovPing?

Every important government, regulator, and court update from around the world. One place. Real-time. Free. Our mission

What's from the agency?

Source document text, dates, docket IDs, and authority are extracted directly from CISA.

What's AI-generated?

The summary, classification, recommended actions, deadlines, and penalty information are AI-generated from the original text and may contain errors. Always verify against the source document.

Last updated

Press inquiries →

Classification

Agency
CISA
Published
April 21st, 2026
Instrument
Guidance
Branch
Executive
Legal weight
Non-binding
Stage
Final
Change scope
Substantive

Who this affects

Applies to
Manufacturers Technology companies Industrial firms
Industry sector
3364 Aerospace & Defense 5112 Software & Technology
Activity scope
Vulnerability remediation Software patching Industrial network security
Geographic scope
United States US

Taxonomy

Primary area
Cybersecurity
Operational domain
IT Security
Compliance frameworks
NIST CSF
Topics
Critical Infrastructure Industrial Control System Vulnerabilities

Browse Categories

Agriculture & Food Safety 73 AI Regulation 3 Banking & Finance 414 Consumer Protection 89 Courts & Legal 411 Data Privacy & Cybersecurity 90 Defense & National Security 53 Education 55 Energy 100 Environment 152 Gaming 2 Government & Legislation 431 Healthcare 15 Healthcare & Life Sciences 375 Immigration 10 Insurance 76 Labor & Employment 138 Pharma & Drug Safety 21 Professional Licensing 8 Real Estate & Housing 78 Securities & Markets 154 Tax 78 Telecom & Technology 47 Trade & Sanctions 141 Transportation 91

Get alerts for this source

We'll email you when CISA ICS-CERT Advisories publishes new changes.

Free. Unsubscribe anytime.

You're subscribed!