CVE-2026-41125 - Vulnerability Details

A vulnerability has been identified in blueplanet 100 NX3 M8 (All versions), blueplanet 100 TL3 GEN2 (All versions), blueplanet 105 TL3 (All versions), blueplanet 105 TL3 GEN2 (All versions), blueplanet 110 TL3 (All versions), blueplanet 125 NX3 M11 (All versions), blueplanet 125 TL3 (All versions), blueplanet 125 TL3 GEN2 (All versions), blueplanet 137 TL3 (All versions), blueplanet 150 TL3 (All versions), blueplanet 150 TL3 GEN2 (All versions), blueplanet 155 TL3 (All versions), blueplanet 155 TL3 GEN2 (All versions), blueplanet 165 TL3 (All versions), blueplanet 165 TL3 GEN2 (All versions), blueplanet 25.0 NX3-33.0 NX3 (All versions), blueplanet 3.0 NX3-20.0 NX3 (All versions), blueplanet 3.0-5.0 NX1 (All versions), blueplanet 360 NX3 M6 (All versions), blueplanet 50.0 NX3-60.0 NX3 (All versions), blueplanet 87.0 TL3 (All versions), blueplanet 87.0 TL3 GEN2 (All versions), blueplanet 92.0 TL3 (All versions), blueplanet 92.0 TL3 GEN2 (All versions), blueplanet gridsafe 110 TL3-S (All versions), blueplanet gridsafe 137 TL3-S (All versions), blueplanet gridsafe 92.0 TL3-S (All versions), blueplanet hybrid 10.0 TL3 (All versions), blueplanet hybrid 6.0 NH3-12.0 NH3 (All versions). Improper neutralization of special elements used in an sql command ('sql injection') in KACO Meteor server allows an authorized attacker to elevate privileges over a local network.

Attack Vector Adjacent Network

Attack Complexity High

Privileges Required High

Attack Requirements None

User Interaction None

Vulnerable System Confidentiality Impact Low

Vulnerable System Integrity Impact High

Vulnerable System Availability Impact High

Subsequent System Confidentiality Impact None

Subsequent System Integrity Impact None

Subsequent System Availability Impact None

Attack Vector Adjacent Network

Attack Complexity High

Privileges Required High

Scope Unchanged

Confidentiality Impact Low

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

No EPSS score available.

Key SSVC decision points have not yet been added.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

Siemens

blueplanet 100 NX3 M8

unknown

Version	Status	Constraints
`0`	affected	< *

Siemens

blueplanet 100 TL3 GEN2

unknown

Version	Status	Constraints
`0`	affected	< *

Siemens

blueplanet 105 TL3

unknown

Version	Status	Constraints
`0`	affected	< *

Siemens

blueplanet 105 TL3 GEN2

unknown

Version	Status	Constraints
`0`	affected	< *

Siemens

blueplanet 110 TL3

unknown

Version	Status	Constraints
`0`	affected	< *

Siemens

blueplanet 125 NX3 M11

unknown

Version	Status	Constraints
`0`	affected	< *

Siemens

blueplanet 125 TL3

unknown

Version	Status	Constraints
`0`	affected	< *

Siemens

blueplanet 125 TL3 GEN2

unknown

Version	Status	Constraints
`0`	affected	< *

Siemens

blueplanet 137 TL3

unknown

Version	Status	Constraints
`0`	affected	< *

Siemens

blueplanet 150 TL3

unknown

Version	Status	Constraints
`0`	affected	< *

Siemens

blueplanet 150 TL3 GEN2

unknown

Version	Status	Constraints
`0`	affected	< *

Siemens

blueplanet 155 TL3

unknown

Version	Status	Constraints
`0`	affected	< *

Siemens

blueplanet 155 TL3 GEN2

unknown

Version	Status	Constraints
`0`	affected	< *

Siemens

blueplanet 165 TL3

unknown

Version	Status	Constraints
`0`	affected	< *

Siemens

blueplanet 165 TL3 GEN2

unknown

Version	Status	Constraints
`0`	affected	< *

Siemens

blueplanet 25.0 NX3-33.0 NX3

unknown

Version	Status	Constraints
`0`	unaffected	< *

Siemens

blueplanet 3.0 NX3-20.0 NX3

unknown

Version	Status	Constraints
`0`	unaffected	< *

Siemens

blueplanet 3.0-5.0 NX1

unknown

Version	Status	Constraints
`0`	unaffected	< *

Siemens

blueplanet 360 NX3 M6

unknown

Version	Status	Constraints
`0`	unaffected	< *

Siemens

blueplanet 50.0 NX3-60.0 NX3

unknown

Version	Status	Constraints
`0`	unaffected	< *

Siemens

blueplanet 87.0 TL3

unknown

Version	Status	Constraints
`0`	affected	< *

Siemens

blueplanet 87.0 TL3 GEN2

unknown

Version	Status	Constraints
`0`	affected	< *

Siemens

blueplanet 92.0 TL3

unknown

Version	Status	Constraints
`0`	affected	< *

Siemens

blueplanet 92.0 TL3 GEN2

unknown

Version	Status	Constraints
`0`	affected	< *

Siemens

blueplanet gridsafe 110 TL3-S

unknown

Version	Status	Constraints
`0`	affected	< *

Siemens

blueplanet gridsafe 137 TL3-S

unknown

Version	Status	Constraints
`0`	affected	< *

Siemens

blueplanet gridsafe 92.0 TL3-S

unknown

Version	Status	Constraints
`0`	affected	< *

Siemens

blueplanet hybrid 10.0 TL3

unknown

Version	Status	Constraints
`0`	unaffected	< *

Siemens

blueplanet hybrid 6.0 NH3-12.0 NH3

unknown

Version	Status	Constraints
`0`	unaffected	< *

No data.

Project Subscriptions

No data.

Advisories

No advisories yet.

Fixes

Solution

No solution given by the vendor.

Workaround

No workaround given by the vendor.

References

Link	Providers
https://cert-portal.siemens.com/productcert/html/ssa-545643.html

History

Tue, 12 May 2026 09:30:00 +0000

Type	Values Removed	Values Added
Description		A vulnerability has been identified in blueplanet 100 NX3 M8 (All versions), blueplanet 100 TL3 GEN2 (All versions), blueplanet 105 TL3 (All versions), blueplanet 105 TL3 GEN2 (All versions), blueplanet 110 TL3 (All versions), blueplanet 125 NX3 M11 (All versions), blueplanet 125 TL3 (All versions), blueplanet 125 TL3 GEN2 (All versions), blueplanet 137 TL3 (All versions), blueplanet 150 TL3 (All versions), blueplanet 150 TL3 GEN2 (All versions), blueplanet 155 TL3 (All versions), blueplanet 155 TL3 GEN2 (All versions), blueplanet 165 TL3 (All versions), blueplanet 165 TL3 GEN2 (All versions), blueplanet 25.0 NX3-33.0 NX3 (All versions), blueplanet 3.0 NX3-20.0 NX3 (All versions), blueplanet 3.0-5.0 NX1 (All versions), blueplanet 360 NX3 M6 (All versions), blueplanet 50.0 NX3-60.0 NX3 (All versions), blueplanet 87.0 TL3 (All versions), blueplanet 87.0 TL3 GEN2 (All versions), blueplanet 92.0 TL3 (All versions), blueplanet 92.0 TL3 GEN2 (All versions), blueplanet gridsafe 110 TL3-S (All versions), blueplanet gridsafe 137 TL3-S (All versions), blueplanet gridsafe 92.0 TL3-S (All versions), blueplanet hybrid 10.0 TL3 (All versions), blueplanet hybrid 6.0 NH3-12.0 NH3 (All versions). Improper neutralization of special elements used in an sql command ('sql injection') in KACO Meteor server allows an authorized attacker to elevate privileges over a local network.
Weaknesses		CWE-89
References		https://cert-portal.siemens.com/productcert/html/ssa-545643.html
Metrics		cvssV3_1 `{'score': 6, 'vector': 'CVSS:3.1/AV:A/AC:H/PR:H/UI:N/S:U/C:L/I:H/A:H'}` cvssV4_0 `{'score': 5.9, 'vector': 'CVSS:4.0/AV:A/AC:H/AT:N/PR:H/UI:N/VC:L/VI:H/VA:H/SC:N/SI:N/SA:N'}`

Projects

Sign in to view the affected projects.

MITRE

Status: PUBLISHED

Assigner: siemens

Published: 2026-05-12T08:21:16.957Z

Updated: 2026-05-12T08:21:16.957Z

Reserved: 2026-04-17T11:25:13.214Z

Link: CVE-2026-41125

Vulnrichment

No data.

NVD

No data.

Redhat

No data.

OpenCVE Enrichment

No data.

Weaknesses

CWE-89

Attack Vector Adjacent Network

Attack Complexity High

Privileges Required High

Attack Requirements None

User Interaction None

Vulnerable System Confidentiality Impact Low

Vulnerable System Integrity Impact High

Vulnerable System Availability Impact High

Subsequent System Confidentiality Impact None

Subsequent System Integrity Impact None

Subsequent System Availability Impact None

Attack Vector Adjacent Network

Attack Complexity High

Privileges Required High

Scope Unchanged

Confidentiality Impact Low

Integrity Impact High

Availability Impact High

User Interaction None

Project Subscriptions

Projects

JSON object

JSON object

JSON object

JSON object

JSON object