← Back to home
ICSA-26-111-11  ·  Published 2026-04-14  ·  View on CISA ICS-CERT ↗

Siemens Industrial Edge Management

CVSS 7.1 HIGH

Risk Summary

Industrial Edge Management contains an authorization bypass vulnerability that could be exploited by an unauthenticated remote attacker to circumvent authentication and to access connected Industrial Edge Devices through the remote connection feature. Siemens has released new versions for the affected products and recommends to update to the latest versions.

CVEs (1)

Remediations

  • Ensure network access to affected products is limited to trusted parties only
  • Update to V1.15.17 or later version
  • Update to V2.1.1 or later version
  • Update to V2.8.0 or later version

Affected Vendors

Siemens

Affected Products (3)

Siemens · Industrial Edge Management Pro V1 vers:intdot/>=1.7.6|<1.15.17
Siemens · Industrial Edge Management Pro V2 vers:intdot/>=2.0.0|<2.1.1
Siemens · Industrial Edge Management Virtual vers:intdot/>=2.2.0|<2.8.0

Affected Sectors

Critical Manufacturing

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more