CVE-2025-30033

HIGH8.5

Description

The affected setup component is vulnerable to DLL hijacking. This could allow an attacker to execute arbitrary code when a legitimate user installs an application that uses the affected setup component.

CVSS breakdown

CVSS 4.0

Attack Vector

Local

Attack Complexity

Low

Attack Requirements

None

Privileges Required

None

User Interaction

Passive

Confidentiality (Vulnerable System)

High

Integrity (Vulnerable System)

High

Availability (Vulnerable System)

High

Confidentiality (Subsequent System)

None

Integrity (Subsequent System)

None

Availability (Subsequent System)

None

CVSS 3.1

Attack Vector

Local

Attack Complexity

Low

Privileges Required

None

User Interaction

Required

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Affected products

Siemens / Automation License Manager V6.00 – *
Siemens / Automation License Manager V6.20 – V6.2 Upd3
Siemens / CEMAT V10.00 – *
Siemens / CP PtP Param configuring interface0 – *
Siemens / Create MyConfig (CMC)0 – V6.9
Siemens / Energy Support Library (EnSL)0 – *
Siemens / FM Configuration Package0 – *
Siemens / Modular PID CTRL Tool0 – *
Siemens / MultiFieldbus Configuration Tool (MFCT)0 – V1.5.5.0
Siemens / OpenPCS 7 V10.00 – *
Siemens / OpenPCS 7 V9.10 – *
Siemens / Siemens Network Planner (SINETPLAN)0 – *
Siemens / SIMATIC Automation Tool0 – *
Siemens / SIMATIC Automation Tool SDK Windows0 – *
Siemens / SIMATIC BATCH V10.00 – *
Siemens / SIMATIC BATCH V9.10 – *
Siemens / SIMATIC Control Function Library (CFL) V1.x0 – *
Siemens / SIMATIC Control Function Library (CFL) V2.x0 – *
Siemens / SIMATIC Control Function Library (CFL) V3.x0 – V3.1.0.2
Siemens / SIMATIC Control Function Library (CFL) V4.x0 – V4.1
Siemens / SIMATIC D7-SYS0 – *
Siemens / SIMATIC eaSie Core Package0 – *
Siemens / SIMATIC eaSie Document Skills0 – *
Siemens / SIMATIC eaSie PCS 7 Skill Package0 – *
Siemens / SIMATIC eaSie Workflow Skills0 – *
Siemens / SIMATIC Energy Suite V170 – *
Siemens / SIMATIC Energy Suite V180 – *
Siemens / SIMATIC Energy Suite V190 – V19 Update 4
Siemens / SIMATIC Logon V1.60 – *
Siemens / SIMATIC Logon V2.00 – V2.0 Upd3
Siemens / SIMATIC Management Agent0 – V9.1 SP1 Upd8
Siemens / SIMATIC Management Console0 – V9.1 SP1 Upd8
Siemens / SIMATIC MTP CREATOR V2.x0 – V2.1
Siemens / SIMATIC MTP CREATOR V3.x0 – *
Siemens / SIMATIC MTP CREATOR V4.x0 – V4.1.0.1
Siemens / SIMATIC MTP CREATOR V5.x0 – V5.0.0.1
Siemens / SIMATIC MTP Integrator V1.x0 – *
Siemens / SIMATIC MTP Integrator V2.x0 – *
Siemens / SIMATIC NET PC Software V160 – *
Siemens / SIMATIC NET PC Software V170 – *
Siemens / SIMATIC NET PC Software V180 – *
Siemens / SIMATIC NET PC Software V190 – *
Siemens / SIMATIC NET PC Software V200 – V20.0 Update 1
Siemens / SIMATIC ODK 1500S0 – *
Siemens / SIMATIC PCS 7 Advanced Process Faceplates V9.10 – V9.1 SP2 Upd4
Siemens / SIMATIC PCS 7 Advanced Process Functions V2.10 – *
Siemens / SIMATIC PCS 7 Advanced Process Functions V2.20 – *
Siemens / SIMATIC PCS 7 Advanced Process Graphics V10.00 – *
Siemens / SIMATIC PCS 7 Advanced Process Graphics V9.10 – *
Siemens / SIMATIC PCS 7 Advanced Process Library incl. Faceplates V10.00 – *
Siemens / SIMATIC PCS 7 Advanced Process Library V9.10 – V9.1 SP2 Upd6
Siemens / SIMATIC PCS 7 Basis Faceplates V9.10 – V9.1 SP2 Upd2
Siemens / SIMATIC PCS 7 Basis Library V10.00 – V10.0 SP1 Upd2
Siemens / SIMATIC PCS 7 Basis Library V9.10 – V9.1 SP2 Upd8
Siemens / SIMATIC PCS 7 Industry Library V10.00 – *
Siemens / SIMATIC PCS 7 Industry Library V9.00 – *
Siemens / SIMATIC PCS 7 Industry Library V9.10 – *
Siemens / SIMATIC PCS 7 Logic Matrix V10.00 – *
Siemens / SIMATIC PCS 7 Logic Matrix V9.10 – V9.1 Upd8
Siemens / SIMATIC PCS 7 MPC Configurator0 – *
Siemens / SIMATIC PCS 7/OPEN OS V9.10 – *
Siemens / SIMATIC PCS 7 PowerControl0 – *
Siemens / SIMATIC PCS 7 Standard Chemical Library V10.00 – *
Siemens / SIMATIC PCS 7 Standard Chemical Library V9.10 – *
Siemens / SIMATIC PCS 7 TeleControl0 – *
Siemens / SIMATIC PCS 7 V10.00 – V10.0 SP1 UC01
Siemens / SIMATIC PCS 7 V9.10 – V9.1 SP1 UC08
Siemens / SIMATIC PCS neo V5.00 – *
Siemens / SIMATIC PCS neo V6.00 – V6.0 SP1
Siemens / SIMATIC PDM Maintenance Station V5.00 – *
Siemens / SIMATIC PDM V9.20 – *
Siemens / SIMATIC PDM V9.30 – V9.3 SP1 Upd2
Siemens / SIMATIC Process Function Library (PFL) V4.00 – *
Siemens / SIMATIC Process Historian 20200 – *
Siemens / SIMATIC Process Historian 20220 – *
Siemens / SIMATIC Process Historian 20240 – V2024 SP1 Upd2
Siemens / SIMATIC ProSave V170 – V17 Update 9
Siemens / SIMATIC ProSave V180 – *
Siemens / SIMATIC ProSave V190 – V19 Update 4
Siemens / SIMATIC ProSave V200 – *
Siemens / SIMATIC Route Control V10.00 – *
Siemens / SIMATIC Route Control V9.10 – *
Siemens / SIMATIC S7-1500 Software Controller V20 – *
Siemens / SIMATIC S7-1500 Software Controller V30 – V31.1.5
Siemens / SIMATIC S7-Fail-safe Configuration Tool (S7-FCT)0 – V4.0.1
Siemens / SIMATIC S7 F Systems V6.30 – *
Siemens / SIMATIC S7 F Systems V6.40 – *
Siemens / SIMATIC S7-PCT0 – V3.5 SP4 Update 1
Siemens / SIMATIC S7-PLCSIM Advanced0 – V7.0 Update 1
Siemens / SIMATIC S7-PLCSIM V170 – *
Siemens / SIMATIC S7-PLCSIM V180 – *
Siemens / SIMATIC S7-PLCSIM V190 – *
Siemens / SIMATIC S7-PLCSIM V200 – V20 Update 1
Siemens / SIMATIC Safety Matrix0 – *
Siemens / SIMATIC STEP 7 CFC V190 – *
Siemens / SIMATIC STEP 7 CFC V200 – *
Siemens / SIMATIC STEP 7 V5.70 – *
Siemens / SIMATIC Target0 – V6.0 SP3
Siemens / SIMATIC WinCC flexible ES0 – *
Siemens / SIMATIC WinCC Runtime Advanced0 – V17 Update 9
Siemens / SIMATIC WinCC Runtime Professional0 – V21
Siemens / SIMATIC WinCC Runtime Professional V200 – *
Siemens / SIMATIC WinCC TeleControl0 – *
Siemens / SIMATIC WinCC Unified Line Coordination0 – V20
Siemens / SIMATIC WinCC Unified PC Runtime V180 – *
Siemens / SIMATIC WinCC Unified PC Runtime V190 – *
Siemens / SIMATIC WinCC Unified PC Runtime V200 – *
Siemens / SIMATIC WinCC Unified Sequence0 – V20
Siemens / SIMATIC WinCC V7.50 – V7.5 SP2 Update 20
Siemens / SIMATIC WinCC V8.00 – V8.0 Update 8
Siemens / SIMATIC WinCC V8.10 – V8.1 Update 3
Siemens / SIMATIC WinCC Visualization Architect (SiVArc) V170 – V17 Update 9
Siemens / SIMATIC WinCC Visualization Architect (SiVArc) V180 – *
Siemens / SIMATIC WinCC Visualization Architect (SiVArc) V190 – V19 Update 4
Siemens / SIMATIC WinCC Visualization Architect (SiVArc) V200 – V20 Update 3
Siemens / SIMIT Rapid Tester0 – *
Siemens / SIMIT Simulation Platform0 – *
Siemens / SINAMICS Startdrive V170 – *
Siemens / SINAMICS Startdrive V180 – *
Siemens / SINAMICS Startdrive V190 – *
Siemens / SINAMICS Startdrive V200 – *
Siemens / SINEC NMS0 – V4.0
Siemens / SINEMA Remote Connect Client0 – *
Siemens / SITRANS0 – *
Siemens / Standard PID CTRL Tool0 – *
Siemens / TeleControl Server Basic V3.10 – V3.1.2.2
Siemens / TIA Administrator0 – V3.0.6
Siemens / TIA Portal Cloud Connector0 – V2.3
Siemens / TIA Portal Test Suite V170 – *
Siemens / TIA Portal Test Suite V180 – *
Siemens / TIA Portal Test Suite V190 – V19 Update 4
Siemens / TIA Portal Test Suite V200 – V20 Update 3
Siemens / TIA Project-Server0 – V2.2
Siemens / TIA Project-Server V170 – *
Siemens / Totally Integrated Automation Portal (TIA Portal) V170 – V17 Update 9
Siemens / Totally Integrated Automation Portal (TIA Portal) V180 – *
Siemens / Totally Integrated Automation Portal (TIA Portal) V190 – V19 Update 4
Siemens / Totally Integrated Automation Portal (TIA Portal) V200 – V20 Update 4
Siemens / WinCC Panel Image Setup0 – V17 Update 9

References

MISChttps://cert-portal.siemens.com/productcert/html/ssa-282044.html