Known vulnerabilities in Siemens Totally Integrated Automation Portal (TIA Portal)

Known vulnerabilities in Siemens Totally Integrated Automation Portal (TIA Portal)

Vendor: Siemens

Website: https://www.siemens.com/

Total Security Bulletins: 8

Security bulletins (8)

Secuity bulletin	Severity	Status	Published
SB2025071534: Arbitrary file upload in Siemens TIA Project-Server and TIA Portal	Medium	Patched	15.07.2025
SB2025051943: Multiple vulnerabilities in Siemens User Management Component (UMC)	High	Patched	19.05.2025
SB2025031224: Multiple vulnerabilities in Siemens OPC UA	High	Patched Public exploit	12.03.2025
SB2025030706: Insufficient Session Expiration in Siemens Products	High	Patched	07.03.2025
SB2025010960: Heap-based buffer overflow in Siemens User Management Component (UMC)	High	Patched	09.01.2025
SB2024091139: Heap-based buffer overflow in Siemens User Management Component (UMC)	High	Patched	11.09.2024
SB2024071241: Deserialization of Untrusted Data in Siemens STEP 7 Safety and Totally Integrated Automation Portal	Low	Patched	12.07.2024
SB2023121329: Multiple vulnerabilities in Siemens User Management Component (UMC)	Medium	Patched	13.12.2023