Siemens Simcenter Femap is an advanced engineering simulation software program that creates finite element analysis models of complex engineering products and systems, and displays solution results. It can be used as a stand-alone product or in conjunction with other Siemens software as part of a coordinated, integrated simulation process. This application offers CAD access, pre-processing, meshing, solver interfaces, post-processing, and more.

Siemens Simcenter Femap

A vulnerability has been identified in Simcenter Femap (All versions < V2512). The affected applications contains an uninitialized memory vulnerability while parsing specially crafted SLDPRT files. This could allow an attacker to execute code in the context of the current process. (ZDI-CAN-27146)

CVE ID	Severity	Score	Technologies	Component name	CISA KEV exploit	Has fix	Published date
CVE-2025-40801	CRITICAL	9.2	Siemens Tecnomatix Plant Simulation	cpe:2.3:a:siemens:simcenter_femap	No	Yes	Dec 09, 2025
CVE-2025-40800	CRITICAL	9.1	Siemens Simcenter Femap	cpe:2.3:a:siemens:simcenter_femap	No	Yes	Dec 09, 2025
CVE-2025-40829	HIGH	7.3	Siemens Simcenter Femap	cpe:2.3:a:siemens:simcenter_femap	No	Yes	Dec 12, 2025
CVE-2025-40764	HIGH	7.3	Siemens Simcenter Femap	cpe:2.3:a:siemens:simcenter_femap	No	Yes	Aug 12, 2025
CVE-2025-40762	HIGH	7.3	Siemens Simcenter Femap	cpe:2.3:a:siemens:simcenter_femap	No	Yes	Aug 12, 2025

CVE-2025-40829:
Siemens Simcenter Femap vulnerability analysis and mitigation

7.3

Related Siemens Simcenter Femap vulnerabilities:

Benchmark your Cloud Security Posture

Additional Wiz resources

Cloud Vulnerability DB

Cloud Threat Landscape

PEACH

Ready to see Wiz in action?

CVE-2025-40829: Siemens Simcenter Femap vulnerability analysis and mitigation