DLL Hijacking in Windows Setup Component Enables RCE
CVE-2025-30033 Published on August 12, 2025

The affected setup component is vulnerable to DLL hijacking. This could allow an attacker to execute arbitrary code when a legitimate user installs an application that uses the affected setup component.

NVD

Weakness Type

What is a DLL preloading Vulnerability?

The product uses a fixed or controlled search path to find resources, but one or more locations in that path can be under the control of unintended actors.

CVE-2025-30033 has been classified to as a DLL preloading vulnerability or weakness.

Products Associated with CVE-2025-30033

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2025-30033 are published in these products:

Siemens Simatic Easie Core Package

Siemens Simatic Pcs 7

Siemens Simatic Pcs Neo

Siemens Simatic S7 1500 Software Controller

Siemens Simatic S7 Plcsim Advanced

Siemens Simatic Step 7

Siemens Simatic Wincc

Siemens Simatic Wincc Runtime Advanced

Siemens Simatic Wincc Runtime Professional

Siemens Simit Simulation Platform

Siemens Sinec Nms

Siemens Sinema Remote Connect Client

Siemens Telecontrol Server Basic

Siemens Tia Administrator

Siemens Totally Integrated Automation Portal

Affected Versions

Siemens Automation License Manager V6.0:

Before * is affected.

Siemens Automation License Manager V6.2:

Before V6.2 Upd3 is affected.

Siemens CEMAT V10.0:

Before * is affected.

Siemens CP PtP Param configuring interface:

Before * is affected.

Siemens Create MyConfig (CMC):

Before V6.9 is affected.

Siemens Energy Support Library (EnSL):

Before * is affected.

Siemens FM Configuration Package:

Before * is affected.

Siemens Modular PID CTRL Tool:

Before * is affected.

Siemens MultiFieldbus Configuration Tool (MFCT):

Before V1.5.5.0 is affected.

Siemens OpenPCS 7 V10.0:

Before * is affected.

Siemens OpenPCS 7 V9.1:

Before * is affected.

Siemens Network Planner (SINETPLAN):

Before * is affected.

Siemens SIMATIC Automation Tool:

Before * is affected.

Siemens SIMATIC Automation Tool SDK Windows:

Before * is affected.

Siemens SIMATIC BATCH V10.0:

Before * is affected.

Siemens SIMATIC BATCH V9.1:

Before * is affected.

Siemens SIMATIC Control Function Library (CFL) V1.x:

Before * is affected.

Siemens SIMATIC Control Function Library (CFL) V2.x:

Before * is affected.

Siemens SIMATIC Control Function Library (CFL) V3.x:

Before V3.1.0.2 is affected.

Siemens SIMATIC Control Function Library (CFL) V4.x:

Before V4.1 is affected.

Siemens SIMATIC D7-SYS:

Before * is affected.

Siemens SIMATIC eaSie Core Package:

Before * is affected.

Siemens SIMATIC eaSie Document Skills:

Before * is affected.

Siemens SIMATIC eaSie PCS 7 Skill Package:

Before * is affected.

Siemens SIMATIC eaSie Workflow Skills:

Before * is affected.

Siemens SIMATIC Energy Suite V17:

Before * is affected.

Siemens SIMATIC Energy Suite V18:

Before * is affected.

Siemens SIMATIC Energy Suite V19:

Before V19 Update 4 is affected.

Siemens SIMATIC Logon V1.6:

Before * is affected.

Siemens SIMATIC Logon V2.0:

Before V2.0 Upd3 is affected.

Siemens SIMATIC Management Agent:

Before V9.1 SP1 Upd8 is affected.

Siemens SIMATIC Management Console:

Before V9.1 SP1 Upd8 is affected.

Siemens SIMATIC MTP CREATOR V2.x:

Before V2.1 is affected.

Siemens SIMATIC MTP CREATOR V3.x:

Before * is affected.

Siemens SIMATIC MTP CREATOR V4.x:

Before V4.1.0.1 is affected.

Siemens SIMATIC MTP CREATOR V5.x:

Before V5.0.0.1 is affected.

Siemens SIMATIC MTP Integrator V1.x:

Before * is affected.

Siemens SIMATIC MTP Integrator V2.x:

Before * is affected.

Siemens SIMATIC NET PC Software V16:

Before * is affected.

Siemens SIMATIC NET PC Software V17:

Before * is affected.

Siemens SIMATIC NET PC Software V18:

Before * is affected.

Siemens SIMATIC NET PC Software V19:

Before * is affected.

Siemens SIMATIC NET PC Software V20:

Before V20.0 Update 1 is affected.

Siemens SIMATIC ODK 1500S:

Before * is affected.

Siemens SIMATIC PCS 7 Advanced Process Faceplates V9.1:

Before V9.1 SP2 Upd4 is affected.

Siemens SIMATIC PCS 7 Advanced Process Functions V2.1:

Before * is affected.

Siemens SIMATIC PCS 7 Advanced Process Functions V2.2:

Before * is affected.

Siemens SIMATIC PCS 7 Advanced Process Graphics V10.0:

Before * is affected.

Siemens SIMATIC PCS 7 Advanced Process Graphics V9.1:

Before * is affected.

Siemens SIMATIC PCS 7 Advanced Process Library incl. Faceplates V10.0:

Before * is affected.

Siemens SIMATIC PCS 7 Advanced Process Library V9.1:

Before V9.1 SP2 Upd6 is affected.

Siemens SIMATIC PCS 7 Basis Faceplates V9.1:

Before V9.1 SP2 Upd2 is affected.

Siemens SIMATIC PCS 7 Basis Library V10.0:

Before V10.0 SP1 Upd2 is affected.

Siemens SIMATIC PCS 7 Basis Library V9.1:

Before V9.1 SP2 Upd8 is affected.

Siemens SIMATIC PCS 7 Industry Library V10.0:

Before * is affected.

Siemens SIMATIC PCS 7 Industry Library V9.0:

Before * is affected.

Siemens SIMATIC PCS 7 Industry Library V9.1:

Before * is affected.

Siemens SIMATIC PCS 7 Logic Matrix V10.0:

Before * is affected.

Siemens SIMATIC PCS 7 Logic Matrix V9.1:

Before V9.1 Upd8 is affected.

Siemens SIMATIC PCS 7 MPC Configurator:

Before * is affected.

Siemens SIMATIC PCS 7 PowerControl:

Before * is affected.

Siemens SIMATIC PCS 7 Standard Chemical Library V10.0:

Before * is affected.

Siemens SIMATIC PCS 7 Standard Chemical Library V9.1:

Before * is affected.

Siemens SIMATIC PCS 7 TeleControl:

Before * is affected.

Siemens SIMATIC PCS 7 V10.0:

Before V10.0 SP1 UC01 is affected.

Siemens SIMATIC PCS 7 V9.1:

Before V9.1 SP1 UC08 is affected.

Siemens SIMATIC PCS 7/OPEN OS V9.1:

Before * is affected.

Siemens SIMATIC PCS neo V5.0:

Before * is affected.

Siemens SIMATIC PCS neo V6.0:

Before V6.0 SP1 is affected.

Siemens SIMATIC PDM Maintenance Station V5.0:

Before * is affected.

Siemens SIMATIC PDM V9.2:

Before * is affected.

Siemens SIMATIC PDM V9.3:

Before V9.3 SP1 Upd2 is affected.

Siemens SIMATIC Process Function Library (PFL) V4.0:

Before * is affected.

Siemens SIMATIC Process Historian 2020:

Before * is affected.

Siemens SIMATIC Process Historian 2022:

Before * is affected.

Siemens SIMATIC Process Historian 2024:

Before V2024 SP1 Upd2 is affected.

Siemens SIMATIC ProSave V17:

Before V17 Update 9 is affected.

Siemens SIMATIC ProSave V18:

Before * is affected.

Siemens SIMATIC ProSave V19:

Before V19 Update 4 is affected.

Siemens SIMATIC ProSave V20:

Before * is affected.

Siemens SIMATIC Route Control V10.0:

Before * is affected.

Siemens SIMATIC Route Control V9.1:

Before * is affected.

Siemens SIMATIC S7 F Systems V6.3:

Before * is affected.

Siemens SIMATIC S7 F Systems V6.4:

Before * is affected.

Siemens SIMATIC S7-1500 Software Controller V2:

Before * is affected.

Siemens SIMATIC S7-1500 Software Controller V3:

Before V31.1.5 is affected.

Siemens SIMATIC S7-Fail-safe Configuration Tool (S7-FCT):

Before V4.0.1 is affected.

Siemens SIMATIC S7-PCT:

Before V3.5 SP4 Update 1 is affected.

Siemens SIMATIC S7-PLCSIM Advanced:

Before V7.0 Update 1 is affected.

Siemens SIMATIC S7-PLCSIM V17:

Before * is affected.

Siemens SIMATIC S7-PLCSIM V18:

Before * is affected.

Siemens SIMATIC S7-PLCSIM V19:

Before * is affected.

Siemens SIMATIC S7-PLCSIM V20:

Before V20 Update 1 is affected.

Siemens SIMATIC Safety Matrix:

Before * is affected.

Siemens SIMATIC STEP 7 CFC V19:

Before * is affected.

Siemens SIMATIC STEP 7 CFC V20:

Before * is affected.

Siemens SIMATIC STEP 7 V5.7:

Before * is affected.

Siemens SIMATIC Target:

Before * is affected.

Siemens SIMATIC WinCC flexible ES:

Before * is affected.

Siemens SIMATIC WinCC Runtime Advanced:

Before V17 Update 9 is affected.

Siemens SIMATIC WinCC Runtime Professional:

Before V21 is affected.

Siemens SIMATIC WinCC Runtime Professional V20:

Before * is affected.

Siemens SIMATIC WinCC TeleControl:

Before * is affected.

Siemens SIMATIC WinCC Unified Line Coordination:

Before V20 is affected.

Siemens SIMATIC WinCC Unified PC Runtime V18:

Before * is affected.

Siemens SIMATIC WinCC Unified PC Runtime V19:

Before * is affected.

Siemens SIMATIC WinCC Unified PC Runtime V20:

Before * is affected.

Siemens SIMATIC WinCC Unified Sequence:

Before V20 is affected.

Siemens SIMATIC WinCC V7.5:

Before * is affected.

Siemens SIMATIC WinCC V8.0:

Before * is affected.

Siemens SIMATIC WinCC V8.1:

Before V8.1 Update 3 is affected.

Siemens SIMATIC WinCC Visualization Architect (SiVArc) V17:

Before V17 Update 9 is affected.

Siemens SIMATIC WinCC Visualization Architect (SiVArc) V18:

Before * is affected.

Siemens SIMATIC WinCC Visualization Architect (SiVArc) V19:

Before V19 Update 4 is affected.

Siemens SIMATIC WinCC Visualization Architect (SiVArc) V20:

Before V20 Update 3 is affected.

Siemens SIMIT Rapid Tester:

Before * is affected.

Siemens SIMIT Simulation Platform:

Before * is affected.

Siemens SINAMICS Startdrive V17:

Before * is affected.

Siemens SINAMICS Startdrive V18:

Before * is affected.

Siemens SINAMICS Startdrive V19:

Before * is affected.

Siemens SINAMICS Startdrive V20:

Before * is affected.

Siemens SINEC NMS:

Before V4.0 is affected.

Siemens SINEMA Remote Connect Client:

Before * is affected.

Siemens SITRANS:

Before * is affected.

Siemens Standard PID CTRL Tool:

Before * is affected.

Siemens TeleControl Server Basic V3.1:

Before V3.1.2.2 is affected.

Siemens TIA Administrator:

Before V3.0.6 is affected.

Siemens TIA Portal Cloud Connector:

Before V2.3 is affected.

Siemens TIA Portal Test Suite V17:

Before * is affected.

Siemens TIA Portal Test Suite V18:

Before * is affected.

Siemens TIA Portal Test Suite V19:

Before V19 Update 4 is affected.

Siemens TIA Portal Test Suite V20:

Before V20 Update 3 is affected.

Siemens TIA Project-Server:

Before V2.2 is affected.

Siemens TIA Project-Server V17:

Before * is affected.

Siemens Totally Integrated Automation Portal (TIA Portal) V17:

Before V17 Update 9 is affected.

Siemens Totally Integrated Automation Portal (TIA Portal) V18:

Before * is affected.

Siemens Totally Integrated Automation Portal (TIA Portal) V19:

Before V19 Update 4 is affected.

Siemens Totally Integrated Automation Portal (TIA Portal) V20:

Before V20 Update 4 is affected.

Siemens WinCC Panel Image Setup:

Before V17 Update 9 is affected.

Exploit Probability

EPSS

0.01%

Percentile

0.54%