CVE-2025-30033 PUBLISHED

Assigner: siemens
Reserved: 14.03.2025 Published: 12.08.2025 Updated: 12.08.2025

The affected setup component is vulnerable to DLL hijacking. This could allow an attacker to execute arbitrary code when a legitimate user installs an application that uses the affected setup component.

CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
CVSS Score: 7.8

Attack Vector	Local	Scope	Unchanged
Attack Complexity	Low	Confidentiality Impact	High
Privileges Required	None	Integrity Impact	High
User Interaction	Required	Availability Impact	High

CVSS 3.1

CVSS Vector: CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
CVSS Score: 8.5

Exploitability Metrics		Vulnerable System Impact Metrics		Subsequent System Impact Metrics
Attack Vector	Local	Confidentiality	High	Confidentiality	None
Attack Complexity	Low	Integrity	High	Integrity	None
Attack Requirements	None	Availability	High	Availability	None
Privileges Required	None
User Interaction	Passive

CVSS 4.0

Product Status

Vendor	Siemens
Product	Automation License Manager V6.0
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	Automation License Manager V6.2
Versions	Default: unknown affected from 0 to V6.2 Upd3 (excl.)

Vendor	Siemens
Product	CEMAT V10.0
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	CP PtP Param configuring interface
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	Create MyConfig (CMC)
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	Energy Support Library (EnSL)
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	FM Configuration Package
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	Modular PID CTRL Tool
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	MultiFieldbus Configuration Tool (MFCT)
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	OpenPCS 7 V10.0
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	OpenPCS 7 V9.1
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	Siemens Network Planner (SINETPLAN)
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SIMATIC Automation Tool
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SIMATIC Automation Tool SDK Windows
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SIMATIC BATCH V10.0
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SIMATIC BATCH V9.1
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SIMATIC Control Function Library (CFL) V1.0.0
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SIMATIC Control Function Library (CFL) V2.0
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SIMATIC Control Function Library (CFL) V3.0
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SIMATIC Control Function Library (CFL) V4.0
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SIMATIC D7-SYS
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SIMATIC eaSie Core Package
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SIMATIC eaSie Document Skills
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SIMATIC eaSie PCS 7 Skill Package
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SIMATIC eaSie Workflow Skills
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SIMATIC Energy Suite V17
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SIMATIC Energy Suite V18
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SIMATIC Energy Suite V19
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SIMATIC Logon V1.6
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SIMATIC Logon V2.0
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SIMATIC Management Agent
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SIMATIC Management Console
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SIMATIC MTP CREATOR V2.x
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SIMATIC MTP CREATOR V3.x
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SIMATIC MTP CREATOR V4.x
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SIMATIC MTP CREATOR V5.x
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SIMATIC MTP Integrator V1.x
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SIMATIC MTP Integrator V2.x
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SIMATIC NET PC Software V16
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SIMATIC NET PC Software V17
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SIMATIC NET PC Software V18
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SIMATIC NET PC Software V19
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SIMATIC NET PC Software V20
Versions	Default: unknown affected from 0 to V20.0 Update 1 (excl.)

Vendor	Siemens
Product	SIMATIC ODK 1500S
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SIMATIC PCS 7 Advanced Process Faceplates V9.1
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SIMATIC PCS 7 Advanced Process Functions V2.1
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SIMATIC PCS 7 Advanced Process Functions V2.2
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SIMATIC PCS 7 Advanced Process Graphics V10.0
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SIMATIC PCS 7 Advanced Process Graphics V9.1
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SIMATIC PCS 7 Advanced Process Library incl. Faceplates V10.0
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SIMATIC PCS 7 Advanced Process Library V9.1
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SIMATIC PCS 7 Basis Faceplates V9.1
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SIMATIC PCS 7 Basis Library V10.0
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SIMATIC PCS 7 Basis Library V9.1
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SIMATIC PCS 7 Industry Library V10.0
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SIMATIC PCS 7 Industry Library V9.0
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SIMATIC PCS 7 Industry Library V9.1
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SIMATIC PCS 7 Logic Matrix V10.0
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SIMATIC PCS 7 Logic Matrix V9.1
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SIMATIC PCS 7 MPC Configurator
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SIMATIC PCS 7 PowerControl
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SIMATIC PCS 7 Standard Chemical Library V10.0
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SIMATIC PCS 7 Standard Chemical Library V9.1
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SIMATIC PCS 7 TeleControl
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SIMATIC PCS 7 V10.0
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SIMATIC PCS 7 V9.1
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SIMATIC PCS 7/OPEN OS V9.1
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SIMATIC PCS neo V5.0
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SIMATIC PCS neo V6.0
Versions	Default: unknown affected from 0 to V6.0 SP1 (excl.)

Vendor	Siemens
Product	SIMATIC PDM Maintenance Station V5.0
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SIMATIC PDM V9.2
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SIMATIC PDM V9.3
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SIMATIC Process Function Library (PFL) V4.0
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SIMATIC Process Historian 2020
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SIMATIC Process Historian 2022
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SIMATIC Process Historian 2024
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SIMATIC ProSave V17
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SIMATIC ProSave V18
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SIMATIC ProSave V19
Versions	Default: unknown affected from 0 to V19 Update 4 (excl.)

Vendor	Siemens
Product	SIMATIC ProSave V20
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SIMATIC Route Control V10.0
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SIMATIC Route Control V9.1
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SIMATIC S7 F Systems V6.3
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SIMATIC S7 F Systems V6.4
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SIMATIC S7-1500 Software Controller V2
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SIMATIC S7-1500 Software Controller V3
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SIMATIC S7-Fail-safe Configuration Tool (S7-FCT)
Versions	Default: unknown affected from 0 to V4.0.1 (excl.)

Vendor	Siemens
Product	SIMATIC S7-PCT
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SIMATIC S7-PLCSIM Advanced
Versions	Default: unknown affected from 0 to V7.0 Update 1 (excl.)

Vendor	Siemens
Product	SIMATIC S7-PLCSIM V17
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SIMATIC S7-PLCSIM V18
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SIMATIC S7-PLCSIM V19
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SIMATIC S7-PLCSIM V20
Versions	Default: unknown affected from 0 to V20 Update 1 (excl.)

Vendor	Siemens
Product	SIMATIC Safety Matrix
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SIMATIC STEP 7 CFC V19
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SIMATIC STEP 7 CFC V20
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SIMATIC STEP 7 V5.7
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SIMATIC Target
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SIMATIC WinCC flexible ES
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SIMATIC WinCC Runtime Advanced
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SIMATIC WinCC Runtime Professional
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SIMATIC WinCC Runtime Professional V20
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SIMATIC WinCC TeleControl
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SIMATIC WinCC Unified Line Coordination
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SIMATIC WinCC Unified PC Runtime V18
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SIMATIC WinCC Unified PC Runtime V19
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SIMATIC WinCC Unified PC Runtime V20
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SIMATIC WinCC Unified Sequence
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SIMATIC WinCC V7.5
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SIMATIC WinCC V8.0
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SIMATIC WinCC V8.1
Versions	Default: unknown affected from 0 to V8.1 Update 3 (excl.)

Vendor	Siemens
Product	SIMATIC WinCC Visualization Architect (SiVArc) V17
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SIMATIC WinCC Visualization Architect (SiVArc) V18
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SIMATIC WinCC Visualization Architect (SiVArc) V19
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SIMATIC WinCC Visualization Architect (SiVArc) V20
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SIMIT Rapid Tester
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SIMIT Simulation Platform
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SINAMICS Startdrive V17
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SINAMICS Startdrive V18
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SINAMICS Startdrive V19
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SINAMICS Startdrive V20
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SINEC NMS
Versions	Default: unknown affected from 0 to V4.0 (excl.)

Vendor	Siemens
Product	SINEMA Remote Connect Client
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	SITRANS
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	Standard PID CTRL Tool
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	TeleControl Server Basic V3.1
Versions	Default: unknown affected from 0 to V3.1.2.2 (excl.)

Vendor	Siemens
Product	TIA Administrator
Versions	Default: unknown affected from 0 to V3.0.6 (excl.)

Vendor	Siemens
Product	TIA Portal Cloud Connector
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	TIA Portal Test Suite V17
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	TIA Portal Test Suite V18
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	TIA Portal Test Suite V19
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	TIA Portal Test Suite V20
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	TIA Project-Server
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	TIA Project-Server V17
Versions	Default: unknown affected from 0 to * (excl.)

Vendor	Siemens
Product	WinCC Panel Image Setup
Versions	Default: unknown affected from 0 to * (excl.)

References

https://cert-portal.siemens.com/productcert/html/ssa-282044.html

Problem Types

CWE-427: Uncontrolled Search Path Element CWE