Siemens

Security Scorecard

Score

90C

Total CVEs

30

Patch Rate

87%

26 patched

Avg Response

38d

days to patch

Critical Gaps

0

exploitable, no detection

Severity Breakdown

Critical2

High14

Medium14

Low0

Patch Status

Patched26 (87%)

Partial/Workaround0 (0%)

Unpatched4 (13%)

CVEs (30)

CVE ID	Title	Severity	Score	Days	Patch
CVE-2025-40805	Siemens XA Security Vulnerability	Critical	10.0	-	Patched
CVE-2025-40942	TeleControl Server Basic Privilege Escalation	High	8.8	-	Patched
CVE-2025-40944	SIMATIC ET 200AL IM 157-1 PN (6ES7157-1AB00-0AB0) Denial-of-Service Vulnerability	High	7.5	-	Patched
CVE-2025-40829	Simcenter Femap Uninitialized Memory Vulnerability	High	7.8	-	Patched
CVE-2024-56835	CVE-2024-56835	High	8.8	-	Patched
CVE-2025-40937	SIMATIC CN 4100 API Vulnerability	High	8.3	-	Patched
CVE-2025-40801	COMOS V10.6 TLS Vulnerability	High	8.1	-	Patched
CVE-2025-40938	SIMATIC CN 4100 Firmware Bypass Vulnerability	High	8.1	-	Patched
CVE-2024-56836	RUGGEDCOM ROX II DNS Injection	High	7.5	-	Patched
CVE-2025-40820	Siemens TCP Sequence Number Validation Bypass	High	7.5	23d	Unpatched