Siemens

Siemens, a major industrial automation and control systems manufacturer, has a high-severity vulnerability (CVSS 7.8) that requires local access and user interaction but requires no authentication to exploit, resulting in high impact to confidentiality, integrity, and availability. Security teams should monitor for this vulnerability closely as it affects critical infrastructure software and watch for patches before the December 19, 2025 deadline, with particular attention to any public proof-of-concept exploitation attempts after disclosure.