Volerion logoVolerion
Volerion logoVolerion

Siemens Teamcenter Cross-Site Scripting Vulnerability

Vulnerability

A cross-site scripting vulnerability has been identified in multiple versions of Siemens Teamcenter, including V2312 (all versions prior to V2312.0014), V2406 (all versions prior to V2406.0012), V2412 (all versions prior to V2412.0009), V2506 (all versions prior to V2506.0005), and V2512 (all versions). The vulnerability arises because the application fails to properly encode or filter user-supplied data, potentially allowing an attacker to inject malicious code that could be executed by other users when they visit the affected page.

Impact

Exploitation of this vulnerability allows for cross-site scripting, where injected malicious scripts are executed in the context of the user's browser.

Remediation

Users are advised to update to the latest versions of Siemens Teamcenter. Specific update instructions can be found in the Siemens Security Advisory SSA-827383.

Added: May 12, 2026, 10:28 AM
Updated: May 12, 2026, 10:28 AM

Vulnerability Rating

Custom Algorithm
spread
0.3
impact
1.7
exploitability
4.6
remediation
7.7
relevance
8.1
threat
0.0
urgency
2.9
incentive
0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.