Summary: A high-severity vulnerability (CVE-2025-23363) in Siemens Teamcenter PLM software could enable attackers to steal valid session data through an open redirect in the single sign-on (SSO) service. The vulnerability affects all versions of the software and poses risks if users click on malicious links. Siemens is working on a new fix and advises users to avoid untrusted links in the meantime.
Affected: Siemens Teamcenter
Keypoints :
- CV-2025-23363 is an open redirect vulnerability allowing session data theft.
- The vulnerability requires users to click on attacker-crafted links for exploitation.
- Siemens recommends protecting network access and avoiding links from untrusted sources until a new fix is available.