Siemens has disclosed a high-severity deserialization vulnerability in its TIA Portal engineering platform that carries a CVSS v4 score of 8.5, and in a troubling admission, says no fix is planned for the widely used SIMATIC S7-PLCSIM V17 simulator. The flaw, tracked as CVE-2025-40759 and detailed in Siemens advisory SSA-493396, stems from unsafe parsing of project files, allowing an attacker to execute arbitrary code on an engineer’s workstation with no more than opening a malicious project. CISA has republished the advisory, underscoring the risk to critical manufacturing environments where these engineering tools are ubiquitous.

A Deep-Rooted Flaw in Project Deserialization

The vulnerability is rooted in CWE-502: deserialization of untrusted data. When TIA Portal or its associated engineering components parse a specially crafted project file, the deserialization process can trigger type confusion, letting an attacker instantiate unexpected object types. This leads to arbitrary code execution within the context of the engineering application. The attack vector is strictly local—an adversary must first place the malicious file on the target system and convince an engineer to open it—but the low attack complexity makes it a potent weapon in social engineering or supply chain attacks.

Siemens rates the vulnerability with a CVSS v3.1 base score of 7.8 and a CVSS v4 base score of 8.5. Both scores indicate high impact to confidentiality, integrity, and availability. The CISA advisory reiterates that “the vulnerability is not exploitable remotely,” but underscores that file exchange practices, removable media, and workstation hygiene at engineering stations are the real-world risk factors. No public exploitation has been reported as of August 14, 2025, but that offers little comfort when patches are missing for many versions.

Affected Products and a Troubling Patch Gap

The advisory lists dozens of affected products spanning the TIA Portal ecosystem from V17 through V20. These include SIMATIC STEP 7, WinCC, SIMOCODE ES, SIMOTION SCOUT TIA, SINAMICS Startdrive, SIRIUS Safety ES, and TIA Portal Cloud. While some versions have received updates, a glaring number are marked with “currently no fix is available” or, in the case of SIMATIC S7-PLCSIM V17, “currently no fix is planned.”

Product Affected Versions Fix Status
SIMATIC S7-PLCSIM V17 All versions No fix planned – see mitigations
SIMATIC STEP 7 V17 < V17 Update 9 Update to V17 Update 9
SIMATIC WinCC V17 < V17 Update 9 Update to V17 Update 9
SIMATIC STEP 7 V19 < V19 Update 4 Update to V19 Update 4
SIMATIC WinCC V19 < V19 Update 4 Update to V19 Update 4
SIMOTION SCOUT TIA V5.6 < V5.6 SP1 HF7 Update to V5.6 SP1 HF7
SIMATIC STEP 7 V20 < V20 Update 4 Update to V20 Update 4
SIMATIC WinCC V20 < V20 Update 4 Update to V20 Update 4
TIA Portal Cloud V19 < V5.2.1.1 Fixed with V5.2.1.1 (no user action required)

For a full list of affected products and update links, refer to Siemens advisory SSA-493396.

The decision not to patch S7-PLCSIM V17 is particularly consequential. Engineers rely heavily on this simulator for developing and testing PLC logic without hardware. Workstations running S7-PLCSIM frequently receive project files from vendors, contractors, and remote sites, making them prime targets. With no fix planned, organizations must either upgrade to a supported version—such as TIA Portal V20 variants—or implement stringent compensating controls.

Why Engineering Software Is the Real Target

Exploiting a vulnerability in engineering software is far more dangerous than a typical endpoint compromise. An engineering workstation holds the keys to the industrial kingdom: it authors, verifies, and transfers control logic to production PLCs. Code execution on such a host can allow an attacker to manipulate projects, steal intellectual property, plant backdoors in automation logic, or pivot laterally into the operational technology (OT) network.

“If an engineer opens a malicious project file, the attacker can achieve code execution on the same machine used to program factory-floor controllers,” the Siemens advisory warns. From there, credential theft, privilege escalation, and even physical process disruption become realistic follow-on goals. The blast radius includes any environment that routinely imports project files from external sources—a common practice in system integrator and multi-site plant operations.

Mitigation Strategies for Windows-Centric Engineering Teams

With patches unavailable for many versions, immediate and multi-layered defenses are essential. CISA and Siemens outline general guidelines, but the following actionable steps are tailored for teams managing Windows-based engineering workstations.

Immediate Actions (Hours)

  • Only open project files from trusted, verified sources. Treat every incoming project archive as potentially hostile until scanned.
  • Block or tightly control removable media. Disable USB autorun, enforce media scanning, and consider physical port blockers for high-risk hosts.
  • Do not open email attachments containing SIMATIC project files directly. Use a segregated file share and scan with updated endpoint protection and file-type scanners.

Short-Term Hardening (Days)

  • Run engineering tools inside isolated virtual machines (VMs). Disposable VMs with no network connectivity or segmented access allow safe inspection of project files. Roll back to a clean snapshot after each session.
  • Implement application allow-listing. Use AppLocker or Windows Defender Application Control to restrict execution to only vendor-signed engineering binaries and trusted toolchains. This thwarts arbitrary binaries spawned after exploitation.
  • Enforce least privilege. Engineers should not use administrative accounts for daily work. Separate privileged accounts require audited escalation, reducing the impact of a compromise.

Medium-Term Fixes (Weeks)

  • Apply updates where available. Prioritize SIMATIC STEP 7/WinCC V19 Update 4, V20 Update 4, and SIMOTION SCOUT TIA V5.6 SP1 HF7. Maintain a documented inventory of all engineering software versions and their patch status.
  • Harden network architecture. Segment engineering workstations into a dedicated VLAN with strict firewall rules. Isolate TIA Portal Cloud usage with zero-trust controls. Never place engineering hosts on the corporate internet-facing network.

Detection and Monitoring

  • Deploy Endpoint Detection and Response (EDR) on all engineering hosts. Craft detections for:
  • Unexpected child processes or script interpreters (e.g., powershell.exe, cmd.exe) spawned by TIA Portal executables.
  • Creation of new executable files in temporary directories upon project file opening.
  • Unusual outbound network traffic from engineering VMs immediately after a project is loaded.
  • Feed relevant logs into a SIEM and configure automated alerts for suspicious activity sourced from engineering segments. Tune baselines to reduce noise while maintaining fidelity on process creation and file-system anomalies.

Incident Response Playbook

If a compromise is suspected, follow a disciplined containment and forensics procedure:
1. Immediately isolate the affected host by disconnecting its network interface. Preserve volatile evidence such as running processes and memory.
2. Quarantine the malicious project file and any associated archives or media. Do not open them on another workstation.
3. Use a dedicated, hardened analysis VM to detonate the file in a controlled sandbox. Record process, file system, and registry changes.
4. Collect EDR telemetry and scrutinize for lateral movement indicators—such as new services created on other hosts or unusual authentication attempts.
5. Rotate all credentials used on the compromised host. Enforce password resets for any systems the host had access to.
6. Report confirmed incidents to national CERTs per regulatory obligations. CISA stresses that reporting helps correlate threats across critical infrastructure sectors.

Strengths and Weaknesses of the Advisory

Siemens’ publication of SSA-493396 is commendably detailed, with an itemized list of affected versions and specific update guidance where patches exist. The CVE assignment and reproduction by independent databases like NVD and Tenable provide third-party validation, making inventory and risk assessment straightforward. CISA’s republication adds authoritative weight for U.S. organizations and reiterates standard ICS defensive best practices.

However, the advisory has notable gaps. The decision not to plan a fix for SIMATIC S7-PLCSIM V17 forces organizations into an upgrade-or-risk posture that many will find operationally difficult. The default recommendation to “only open projects from trusted sources” is necessary but insufficient—human error and supply chain compromise can easily circumvent trust-based policies. Without technical enforcement through sandboxing, allow-listing, and EDR, the guidance remains a paper defense.

Moving Forward: A Call to Action

CVE-2025-40759 is a textbook example of why engineering workstations must be treated as crown jewels in an industrial environment. Security teams should immediately:
- Inventory every instance of TIA Portal and related components, noting versions and patch status.
- Assess whether workflows accept project files from third parties. If yes, implement an intake VM and scanning workflow without delay.
- Segregate engineering accounts from broad domain privileges and enforce multi-factor authentication for remote access.
- Tune EDR and SIEM rules specifically for process creation anomalies originating from engineering applications.

Organizations that depend on S7-PLCSIM V17 should begin planning migration to supported TIA Portal versions or implement engineered isolation for those legacy hosts. While no active exploitation has been observed yet, the threat landscape can shift quickly, and the high-impact nature of this vulnerability demands proactive defense. By combining targeted patching, robust compensating controls, and a vigilant detection posture, engineering teams can materially reduce the risk while they chart a path to a fully supported software baseline.