CVE-2025-23363
Published: 11 February 2025
Description
A vulnerability has been identified in Teamcenter V14.1 (All versions), Teamcenter V14.2 (All versions), Teamcenter V14.3 (All versions < V14.3.0.14), Teamcenter V2312 (All versions < V2312.0010), Teamcenter V2406 (All versions < V2406.0008), Teamcenter V2412 (All versions < V2412.0004). The SSO login service of affected applications accepts user-controlled input that could specify a link to an external site. This could allow an attacker to redirect the legitimate user to an attacker-chosen URL to steal valid session data. For a successful exploit, the legitimate user must actively click on an attacker-crafted link.
Security Summary
CVE-2025-23363 is an open redirect vulnerability (CWE-601) in the SSO login service of Siemens Teamcenter, affecting all versions of V14.1 and V14.2, versions of V14.3 prior to V14.3.0.14, versions of V2312 prior to V2312.0010, versions of V2406 prior to V2406.0008, and versions of V2412 prior to V2412.0004. The service accepts user-controlled input that can specify a link to an external site, enabling redirection of legitimate users to attacker-chosen URLs during authentication flows.
Attackers with network access can exploit this vulnerability without privileges by crafting a malicious link that a legitimate user must actively click (UI:R). Upon interaction, the victim is redirected to an attacker-controlled site, where valid session data can be stolen, leading to potential session hijacking. The vulnerability has a CVSS v3.1 base score of 7.4 (AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N), reflecting high confidentiality impact due to the changed scope.
Siemens has published security advisory SSA-656895 at https://cert-portal.siemens.com/productcert/html/ssa-656895.html, which documents the vulnerability and specifies patching to the listed fixed versions as the primary mitigation.
Details
- CWE(s)