CVE-2022-31807

Medium CVSS: 5.9

A vulnerability has been identified in Building X - Security Manager Edge Controller (ACC-AP) (All versions). Affected devices do not properly check the integrity of firmware updates. This could allow a local attacker to upload a maliciously modified firmware onto the device. In a second scenario, a remote attacker who is able to intercept the transfer of a valid firmware from the server to the device could modify the firmware "on the fly".

Vendor

Siemens

Product

Sipass Integrated Ac5102 \(acc-g2\) Firmware

CWE

CWE-347

Yayın Tarihi

2025-05-23 15:15:21

Güncelleme

2025-12-09 16:17:15

Source Identifier

productcert@siemens.com

KEV Date Added

Kategoriler

CWE-347 Sipass Integrated Ac5102 \(acc-g2\) Firmware MEDIUM Siemens 2025

Referanslar

https://cert-portal.siemens.com/productcert/html/ssa-367714.html https://cert-portal.siemens.com/productcert/html/ssa-420375.html

Benzer Kayıtlar

Medium

CVE-2026-27661

A vulnerability has been identified in SINEC Security Monitor (All versions < V4.9.0). The affected application leaks co…

Medium

CVE-2026-25571

A vulnerability has been identified in SICAM SIAPP SDK (All versions < V2.1.7). The SICAM SIAPP SDK client component doe…

Medium

CVE-2026-25572

A vulnerability has been identified in SICAM SIAPP SDK (All versions < V2.1.7). The SICAM SIAPP SDK server component doe…

High

CVE-2026-25573

A vulnerability has been identified in SICAM SIAPP SDK (All versions < V2.1.7). The affected application builds shell co…

Medium

CVE-2026-25605

A vulnerability has been identified in SICAM SIAPP SDK (All versions < V2.1.7). The affected application performs file d…

High

CVE-2026-25569

A vulnerability has been identified in SICAM SIAPP SDK (All versions < V2.1.7). An out-of-bounds write vulnerability exi…