Firmware Update Vulnerability in CPCI85 Central Processing and SICORE Base System
CVE-2026-54799
8.4HIGH
Key Information:
- Vendor
Siemens
- Vendor
- CVE Published:
- 9 July 2026
What is CVE-2026-54799?
A vulnerability exists in the firmware update mechanism of the CPCI85 Central Processing/Communication and SICORE Base System. This flaw arises from improper signature validation, potentially allowing attackers to install unauthorized firmware. Successful exploitation could lead to persistent code execution, affecting the integrity of the system and resulting in a compromise of its functionality. Users are advised to evaluate their current software versions and apply necessary updates to mitigate risks.
Affected Version(s)
CPCI85 Central Processing/Communication 0
SICORE Base system 0