Siemens BFCClient contains multiple vulnerabilities in the integrated OpenSSL component that could allow an attacker to read memory contents, to change the application behaviour or to create a denial of service condition.
Siemens has released a new version for BFCClient and recommends to update to the latest version.

https://cert-portal.siemens.com/productcert/html/ssa-028723.html