CVE-2026-33862 HIGH

CVE-2026-33862

Vendor Siemens

Product Teamcenter V2312

Weakness CWE-79 · XSS

Published May 12, 2026

Last update May 13, 2026

View on NVD All CVEs

CVSS base score

7.3/10

Attack vector Network

Attack complexity Low

Privileges required Low

User interaction Required

Confidentiality High

Integrity High

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N

What the vulnerability does

01Description

A vulnerability has been identified in Teamcenter V2312 (All versions < V2312.0014), Teamcenter V2406 (All versions < V2406.0012), Teamcenter V2412 (All versions < V2412.0009), Teamcenter V2506 (All versions < V2506.0005), Teamcenter V2512 (All versions). The affected application does not properly encode or filter user-supplied data. This could allow an attacker to inject malicious code that can be executed by other users when they visit the affected page.

Key dates

02Disclosure timeline

May 12, 2026 CVE published

May 13, 2026 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2026-33862

Related vulnerabilities

Identifiers

CVE CVE-2026-33862

CWE CWE-79

CVSS 7.3 / HIGH

Affected versions

Vendor Siemens

Product Teamcenter V2312

Affected < V2312.0014

Vendor Siemens

Product Teamcenter V2406

Affected < V2406.0012

Vendor Siemens

Product Teamcenter V2412

Affected < V2412.0009

Vendor Siemens

Product Teamcenter V2506

Affected < V2506.0005

CVE-2026-33862

01Description

02Disclosure timeline

03References

04Related CVE