Siemens Wibu CodeMeter Runtime

Source: All CISA Advisories | Added:

Siemens has reported a vulnerability in Wibu CodeMeter that allows local users to escalate privileges, potentially compromising system security. This issue affects multiple Siemens products and has been assigned CVE-2025-47809 with a CVSS score of 8.2, indicating a significant risk.

---

Impact: Siemens SIMATIC Information Server 2020, Siemens SIMATIC WinCC OA V3.20, Siemens SIMATIC Information Server 2022, Siemens SIMATIC Information Server 2024, Siemens SIMATIC PDM Maintenance Station V5.0, Siemens SIMATIC Process Historian 2020, Siemens SIMATIC Process Historian 2022, Siemens SIMATIC Process Historian 2024, Siemens SIMATIC WinCC OA V3.18, Siemens SIMATIC WinCC OA V3.19

In the Wild: No

Age: Newly disclosed

Remediation: Update SIMATIC WinCC OA V3.19 to V3.19 P020 or later, update SIMATIC WinCC OA V3.20 to V3.20 P008 or later, protect network access to devices.

Read Full Original Article →