PT-2026-57998 · Siemens · Simcenter 3D+9

Published

2026-07-14

·

Updated

2026-07-14

·

CVE-2025-40945

CVSS v3.1

6.7

Medium

VectorAV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions COMOS V10.4.5 versions prior to V10.4.5.0.2 COMOS V10.6 versions prior to V10.6.1 Designcenter NX versions prior to V2512.7000 Simcenter 3D versions prior to V2512.7000 Simcenter Femap V2506 versions prior to V2506.0003 Simcenter Femap V2512 versions prior to V2512.0002 Simcenter Nastran versions prior to V2606 Simcenter STAR-CCM+ versions prior to V2606 Solid Edge SE2025 versions prior to V225.0 Update 13 Solid Edge SE2026 versions prior to V226.0 Update 04 Teamcenter Visualization V2412 versions prior to V2412.0012 Teamcenter Visualization V2506 versions prior to V2506.0009 Teamcenter Visualization V2512 versions prior to V2512.2605 Tecnomatix Plant Simulation V2404 versions prior to V2404.0022 Tecnomatix Plant Simulation V2504 versions prior to V2504.0010 Tecnomatix Process Simulate versions prior to V2606
Description An untrusted search path in the IAM Client SDK may allow an authenticated user to potentially enable escalation of privilege via local access.
Recommendations Update COMOS V10.4.5 to V10.4.5.0.2 or later. Update COMOS V10.6 to V10.6.1 or later. Update Designcenter NX to V2512.7000 or later. Update Simcenter 3D to V2512.7000 or later. Update Simcenter Femap V2506 to V2506.0003 or later. Update Simcenter Femap V2512 to V2512.0002 or later. Update Simcenter Nastran to V2606 or later. Update Simcenter STAR-CCM+ to V2606 or later. Update Solid Edge SE2025 to V225.0 Update 13 or later. Update Solid Edge SE2026 to V226.0 Update 04 or later. Update Teamcenter Visualization V2412 to V2412.0012 or later. Update Teamcenter Visualization V2506 to V2506.0009 or later. Update Teamcenter Visualization V2512 to V2512.2605 or later. Update Tecnomatix Plant Simulation V2404 to V2404.0022 or later. Update Tecnomatix Plant Simulation V2504 to V2504.0010 or later. Update Tecnomatix Process Simulate to V2606 or later.

Fix

Untrusted Search Path

Found an issue in the description? Have something to add? Feel free to write us 👾

Weakness Enumeration

Related Identifiers

CVE-2025-40945

Affected Products

Comos
Designcenter Nx
Simcenter 3D
Simcenter Femap
Simcenter Nastran
Simcenter Star-Ccm+
Solid Edge
Teamcenter Visualization
Tecnomatix Plant Simulation
Tecnomatix Process Simulate