Siemens SIMATIC RTLS Locating Manager

Monitor6.3ICS-CERT ICSA-25-226-01Aug 12, 2025

Attack VectorLocal

Auth RequiredLow

ComplexityLow

User InteractionNone needed

Summary

SIMATIC RTLS Locating Manager versions prior to 3.3 contain improper credential storage (CWE-522) and an access control vulnerability (CWE-617). These flaws allow a local attacker with user-level privileges to execute commands or access sensitive data on the Locating Manager server. The vulnerabilities are exploitable only with local system access and are not remotely exploitable. Siemens has released version 3.3 which corrects these issues.

What this means

What could happen

An attacker with local access to the SIMATIC RTLS Locating Manager could execute commands or access sensitive data due to improper credential handling and access control, potentially disrupting real-time location tracking for personnel or assets in industrial facilities.

Who's at risk

Manufacturing plants, warehouses, and industrial facilities using Siemens SIMATIC RTLS (Real-Time Locating System) for personnel or asset tracking should review this advisory. The Locating Manager is typically the central application server that tracks and manages location data across RTLS infrastructure.

How it could be exploited

An attacker with local system access to the server or workstation running SIMATIC RTLS Locating Manager could exploit weak credential storage (CWE-522) or an access control flaw (CWE-617) to gain higher privileges or bypass authentication, allowing them to execute arbitrary commands or access sensitive configuration data.

Prerequisites

Local system access to the server or workstation running SIMATIC RTLS Locating Manager
Low-privilege user account on the affected system
SIMATIC RTLS Locating Manager version prior to 3.3

Low complexity attackRequires local system accessWeak credential handling (CWE-522)Access control flaw (CWE-617)Not remotely exploitable

Exploitability

Low exploit probability (EPSS 0.0%)

Affected products (1)

ProductAffected VersionsFix Status

SIMATIC RTLS Locating Manager< 3.33.3

Remediation & Mitigation

0/4

Do now

0/1

HARDENINGRestrict local system access to the server or workstation hosting SIMATIC RTLS Locating Manager through operating system access controls and physical security

Schedule — requires maintenance window

0/1

Patching may require device reboot — plan for process interruption

HOTFIXUpdate SIMATIC RTLS Locating Manager to version 3.3 or later

Long-term hardening

0/2

HARDENINGIsolate the RTLS network infrastructure from business networks using firewalls and network segmentation

HARDENINGImplement VPN or secure remote access methods if remote administration of the RTLS system is required

CVEs (2)

CVE-2025-30034 CVE-2025-40751

View full CISA ICS-CERT advisory

↑↓ Navigate · Esc Close

API: /api/v1/advisories/587b8e72-5951-4207-b4cb-3b6331fedc52