CVE-2024-41795

Medium CVSS: 6.9

A vulnerability has been identified in SENTRON 7KT PAC1260 Data Manager (All versions). The web interface of affected devices is vulnerable to Cross-Site Request Forgery (CSRF) attacks. This could allow an unauthenticated attacker to change arbitrary device settings by tricking a legitimate device administrator to click on a malicious link.

Vendor

Siemens

Product

7kt Pac1260 Data Manager Firmware

CWE

CWE-352

Yayın Tarihi

2025-04-08 09:15:20

Güncelleme

2025-09-23 16:06:17

Source Identifier

productcert@siemens.com

KEV Date Added

Kategoriler

CWE-352 7kt Pac1260 Data Manager Firmware MEDIUM Siemens 2025

Referanslar

https://cert-portal.siemens.com/productcert/html/ssa-187636.html

Benzer Kayıtlar

Medium

CVE-2026-27661

A vulnerability has been identified in SINEC Security Monitor (All versions < V4.9.0). The affected application leaks co…

Medium

CVE-2026-25571

A vulnerability has been identified in SICAM SIAPP SDK (All versions < V2.1.7). The SICAM SIAPP SDK client component doe…

Medium

CVE-2026-25572

A vulnerability has been identified in SICAM SIAPP SDK (All versions < V2.1.7). The SICAM SIAPP SDK server component doe…

High

CVE-2026-25573

A vulnerability has been identified in SICAM SIAPP SDK (All versions < V2.1.7). The affected application builds shell co…

Medium

CVE-2026-25605

A vulnerability has been identified in SICAM SIAPP SDK (All versions < V2.1.7). The affected application performs file d…

High

CVE-2026-25569

A vulnerability has been identified in SICAM SIAPP SDK (All versions < V2.1.7). An out-of-bounds write vulnerability exi…