CVE-2025-30033 | Siemens Automation License Manager V6.0 uncontrolled search path (ssa-282044)

August 12, 2025 Yanac

A vulnerability, which was classified as problematic, has been found in Siemens Automation License Manager V6.0, Automation License Manager V6.2, CEMAT V10.0, CP PtP Param configuring interface, Create MyConfig, Energy Support Library, FM Configuration Package, Modular PID CTRL Tool, MultiFieldbus Configuration Tool , OpenPCS 7 V10.0, OpenPCS 7 V9.1, Network Planner, SIMATIC Automation Tool, SIMATIC Automation Tool SDK Windows, SIMATIC BATCH V10.0, SIMATIC BATCH V9.1, SIMATIC Control Function Library V1.0.0, SIMATIC Control Function Library V2.0, SIMATIC Control Function Library V3.0, SIMATIC Control Function Library V4.0, SIMATIC D7-SYS, SIMATIC eaSie Core Package, SIMATIC eaSie Document Skills, SIMATIC eaSie PCS 7 Skill Package, SIMATIC eaSie Workflow Skills, SIMATIC Energy Suite V17, SIMATIC Energy Suite V18, SIMATIC Energy Suite V19, SIMATIC Logon V1.6, SIMATIC Logon V2.0, SIMATIC Management Agent, SIMATIC Management Console, SIMATIC MTP CREATOR V2.x, SIMATIC MTP CREATOR V3.x, SIMATIC MTP CREATOR V4.x, SIMATIC MTP CREATOR V5.x, SIMATIC MTP Integrator V1.x, SIMATIC MTP Integrator V2.x, SIMATIC NET PC Software V16, SIMATIC NET PC Software V17, SIMATIC NET PC Software V18, SIMATIC NET PC Software V19, SIMATIC NET PC Software V20, SIMATIC ODK 1500S, SIMATIC PCS 7 Advanced Process Faceplates V9.1, SIMATIC PCS 7 Advanced Process Functions V2.1, SIMATIC PCS 7 Advanced Process Functions V2.2, SIMATIC PCS 7 Advanced Process Graphics V10.0, SIMATIC PCS 7 Advanced Process Graphics V9.1, SIMATIC PCS 7 Advanced Process Library incl. Faceplates V10.0, SIMATIC PCS 7 Advanced Process Library V9.1, SIMATIC PCS 7 Basis Faceplates V9.1, SIMATIC PCS 7 Basis Library V10.0, SIMATIC PCS 7 Basis Library V9.1, SIMATIC PCS 7 Industry Library V10.0, SIMATIC PCS 7 Industry Library V9.0, SIMATIC PCS 7 Industry Library V9.1, SIMATIC PCS 7 Logic Matrix V10.0, SIMATIC PCS 7 Logic Matrix V9.1, SIMATIC PCS 7 MPC Configurator, SIMATIC PCS 7 PowerControl, SIMATIC PCS 7 Standard Chemical Library V10.0, SIMATIC PCS 7 Standard Chemical Library V9.1, SIMATIC PCS 7 TeleControl, SIMATIC PCS 7 V10.0, SIMATIC PCS 7 V9.1, SIMATIC PCS 7, OPEN OS V9.1, SIMATIC PCS neo V5.0, SIMATIC PCS neo V6.0, SIMATIC PDM Maintenance Station V5.0, SIMATIC PDM V9.2, SIMATIC PDM V9.3, SIMATIC Process Function Library V4.0, SIMATIC Process Historian 2020, SIMATIC Process Historian 2022, SIMATIC Process Historian 2024, SIMATIC ProSave V17, SIMATIC ProSave V18, SIMATIC ProSave V19, SIMATIC ProSave V20, SIMATIC Route Control V10.0, SIMATIC Route Control V9.1, SIMATIC S7 F Systems V6.3, SIMATIC S7 F Systems V6.4, SIMATIC S7-1500 Software Controller V2 and SIMATIC S7-1500 Software C. Affected by this issue is some unknown functionality. The manipulation leads to uncontrolled search path.

This vulnerability is handled as CVE-2025-30033. Attacking locally is a requirement. There is no exploit available.VulDB Recent EntriesRead More