CVE-2026-25572

Medium CVSS: 5.9

A vulnerability has been identified in SICAM SIAPP SDK (All versions < V2.1.7). The SICAM SIAPP SDK server component does not enforce maximum length checks on certain variables before use. This could allow an attacker to send an oversized input that could trigger a stack overflow crashing the process and potentially causing denial of service.

Vendor

Siemens

Product

Sicam Siapp Sdk

CWE

CWE-130

Yayın Tarihi

2026-03-10 18:18:37

Güncelleme

2026-03-13 15:37:18

Source Identifier

productcert@siemens.com

KEV Date Added

Kategoriler

CWE-130 Sicam Siapp Sdk MEDIUM Siemens 2026

Referanslar

https://cert-portal.siemens.com/productcert/html/ssa-903736.html

Benzer Kayıtlar

Medium

CVE-2026-27661

A vulnerability has been identified in SINEC Security Monitor (All versions < V4.9.0). The affected application leaks co…

Medium

CVE-2026-25571

A vulnerability has been identified in SICAM SIAPP SDK (All versions < V2.1.7). The SICAM SIAPP SDK client component doe…

High

CVE-2026-25573

A vulnerability has been identified in SICAM SIAPP SDK (All versions < V2.1.7). The affected application builds shell co…

Medium

CVE-2026-25605

A vulnerability has been identified in SICAM SIAPP SDK (All versions < V2.1.7). The affected application performs file d…

High

CVE-2026-25569

A vulnerability has been identified in SICAM SIAPP SDK (All versions < V2.1.7). An out-of-bounds write vulnerability exi…

High

CVE-2026-25570

A vulnerability has been identified in SICAM SIAPP SDK (All versions < V2.1.7). The SICAM SIAPP SDK does not perform che…