Analysis
No analysis available yet.
Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).
| Vendor | Product | Default status | Versions | ||||||
|---|---|---|---|---|---|---|---|---|---|
| Siemens | Siemens Software Center | unknown |
|
||||||
| Siemens | Simcenter 3D | unknown |
|
||||||
| Siemens | Simcenter Femap | unknown |
|
||||||
| Siemens | Simcenter STAR-CCM+ | unknown |
|
||||||
| Siemens | Solid Edge SE2025 | unknown |
|
||||||
| Siemens | Solid Edge SE2026 | unknown |
|
||||||
| Siemens | Tecnomatix Plant Simulation | unknown |
|
No data.
No data.
No data available yet.
No remediation available yet.
Tracking
Sign in to view the affected projects.
No advisories yet.
Tue, 14 Apr 2026 09:00:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | A vulnerability has been identified in Siemens Software Center (All versions < V3.5.8.2), Simcenter 3D (All versions < V2506.6000), Simcenter Femap (All versions < V2506.0002), Simcenter STAR-CCM+ (All versions < V2602), Solid Edge SE2025 (All versions < V225.0 Update 13), Solid Edge SE2026 (All versions < V226.0 Update 04), Tecnomatix Plant Simulation (All versions < V2504.0008). Affected applications do not properly validate client certificates to connect to Analytics Service endpoint. This could allow an unauthenticated remote attacker to perform man in the middle attacks. | |
| Weaknesses | CWE-295 | |
| References |
| |
| Metrics |
cvssV3_1
|
Subscriptions
No data.
MITRE
Status: PUBLISHED
Assigner: siemens
Published:
Updated: 2026-04-14T08:40:38.637Z
Reserved: 2025-04-16T08:39:30.030Z
Link: CVE-2025-40745
Vulnrichment
No data.
NVD
Status : Received
Published: 2026-04-14T09:16:34.683
Modified: 2026-04-14T09:16:34.683
Link: CVE-2025-40745
Redhat
No data.
OpenCVE Enrichment
No data.