Information Disclosure Vulnerability in Desigo CC

Monitor7.5SSA-523418May 13, 2025

Attack VectorNetwork

Auth RequiredNone

ComplexityLow

User InteractionNone needed

Summary

Desigo CC deployments using Installed Client are vulnerable to information disclosure. The vulnerability allows unauthorized access to information from the Desigo CC server. Windows App Client and Flex Client are not affected. Siemens has not released a patch for this vulnerability.

What this means

What could happen

An attacker with network access could retrieve sensitive configuration, credential, or operational data from your Desigo CC building management system, potentially exposing details about HVAC, lighting, security, or other building automation systems under management.

Who's at risk

Organizations operating Siemens Desigo CC building management systems that use the Installed Client deployment option. This affects facilities managing HVAC, lighting, security, or other building automation systems, particularly in water utilities, electric utilities, or municipal facilities that use Desigo CC for facility management.

How it could be exploited

An attacker on the network sends unauthenticated requests to the Desigo CC server targeting the Installed Client interface. Because no authentication is required and the vulnerability requires no special configuration, the attacker can extract sensitive information from the server without any prior access or credentials.

Prerequisites

Network access to Desigo CC server port (default or configured)
Desigo CC using Installed Client (Flex Client and Windows App Client are unaffected)

remotely exploitableno authentication requiredlow complexityhigh CVSS score (7.5)no patch available

Exploitability

Low exploit probability (EPSS 0.2%)

Affected products (1)

ProductAffected VersionsFix Status

Desigo CCAll versionsNo fix (EOL)

Remediation & Mitigation

0/3

Do now

0/3

WORKAROUNDDisable Installed Client support on all Desigo CC servers; migrate users to Windows App Client or Flex Client instead

HARDENINGImplement network-level access controls to restrict connections to Desigo CC server to trusted administrative networks only (firewall rules, network segmentation)

HARDENINGAudit Desigo CC logs for unauthorized access attempts or data retrieval, and review what information may have been exposed

CVEs (1)

CVE-2024-23815

View full Siemens ProductCERT advisory

↑↓ Navigate · Esc Close

API: /api/v1/advisories/1aff3f8c-6a29-4004-9e79-194e0cce6ca7