CVE-2025-40566 | Siemens SIMATIC PCS neo Session Token session expiration (ssa-339086)

A vulnerability was found in Siemens SIMATIC PCS neo, SINEC NMS, SINEMA Remote Connect, Totally Integrated Automation Portal and User Management Component. It has been rated as problematic. This issue affects some unknown processing of the component Session Token Handler. The manipulation leads to session expiration.

The identification of this vulnerability is CVE-2025-40566. The attack may be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.VulDB Recent EntriesRead More