Primary

Context

Siemens TIA Administrator Privilege Escalation and Arbitrary Code Execution Vulnerability

Vulnerability

Patched

A vulnerability exists in Siemens TIA Administrator versions prior to 3.0.6, allowing low-privileged users to overwrite cache files and alter the download path. This manipulation could lead to unauthorized privilege escalation and the execution of arbitrary code.

Impact

Exploitation of this vulnerability could result in unauthorized privilege escalation and the execution of arbitrary code within the application.

Remediation

Users are advised to update TIA Administrator to version 3.0.6 or later. For more information, visit the Siemens Industry Support page.

Added: Jul 8, 2025, 11:46 AM

Updated: Jul 8, 2025, 11:46 AM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

3.3

remediation

7.7

relevance

0.2

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

3.3

remediation

7.7

relevance

0.2

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Siemens TIA Administrator Privilege Escalation and Arbitrary Code Execution Vulnerability

Vulnerability

Impact

Remediation

Affected Products

Siemens TIA Administrator

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating