CVE-2025-29999

Name of the Vulnerable Software and Affected Versions: Siemens License Server (SLS) versions prior to V4.3

Description: A vulnerability has been identified where the affected application searches for executable files in the application folder without proper validation. This could allow an attacker to execute arbitrary code with administrative privileges by placing a malicious executable in the same directory.

Recommendations: For versions prior to V4.3, update to version V4.3 or later to resolve the issue. As a temporary workaround, consider restricting access to the application folder to prevent malicious executables from being placed in the directory.