IM
IronMonkey Threat Research

CVE-2026-33893 HIGH

Published: 2026-05-12 | Last Modified: 2026-05-18 | Status: Analyzed

Description

A vulnerability has been identified in Teamcenter V2312 (All versions < V2312.0014), Teamcenter V2406 (All versions < V2406.0012), Teamcenter V2412 (All versions < V2412.0009), Teamcenter V2506 (All versions < V2506.0005), Teamcenter V2512 (All versions). The affected application contains hardcoded key which is used for obfuscation stored directly into the application. This could allow an attacker to obtain these keys and misuse them to gain unauthorized access.

CVSS Metrics

Base Score: 7.5 (HIGH)

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Attack VectorNETWORK
Attack ComplexityLOW
Privileges RequiredNONE
User InteractionNONE
ScopeUNCHANGED
Confidentiality ImpactHIGH
Integrity ImpactNONE
Availability ImpactNONE

Source: [email protected]

Type: Primary

Exploitability Score: 3.9

Impact Score: 3.6

Base Score: 8.7 (HIGH)

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Attack VectorNETWORK
Attack ComplexityLOW
Attack RequirementsNONE
Privileges RequiredNONE
User InteractionNONE
Vulnerability ConfidentialityHIGH
Vulnerability IntegrityNONE
Vulnerability AvailabilityNONE
Subsequent ConfidentialityNONE
Subsequent IntegrityNONE
Subsequent AvailabilityNONE

Source: [email protected]

Type: Secondary

Weaknesses

Source Type Description
[email protected] Primary
en CWE-798

Affected Products

Vendor Product Version Update Type
siemens teamcenter * <built-in method update of dict object at 0x7b070c7ab140> Application
siemens teamcenter * <built-in method update of dict object at 0x7b0704905ac0> Application
siemens teamcenter * <built-in method update of dict object at 0x7b070c7aae80> Application
siemens teamcenter * <built-in method update of dict object at 0x7b06fee9a500> Application

Affected Configurations

Operator: OR

Vulnerable CPE
Yes cpe:2.3:a:siemens:teamcenter:*:*:*:*:*:*:*:*
Yes cpe:2.3:a:siemens:teamcenter:*:*:*:*:*:*:*:*
Yes cpe:2.3:a:siemens:teamcenter:*:*:*:*:*:*:*:*
Yes cpe:2.3:a:siemens:teamcenter:*:*:*:*:*:*:*:*

References

Notification
Message here