CNNVD-202510-2041 Information

CNNVD ID

CNNVD-202510-2041

Related CVE

CVE-2025-40765

• CNNVD Published: 2025-10-14

Description (Chinese)

Siemens TeleControl Server Basic是德国西门子（Siemens）公司的一个工业远程控制器。 Siemens TeleControl Server Basic V3.1.2.2版本至V3.1.2.3之前版本存在访问控制错误漏洞，该漏洞源于未经验证的远程攻击者可获取用户密码哈希值，可能导致数据库服务认证操作被入侵。

Description (English)

Siemens TeleControl Server Basic is an industrial remote controller of Siemens, Germany. Siemens TeleControl Server Basic V3.1.2.2 had access control error holes prior to V3.1.2.3, which stemmed from unverified remote assailants obtaining user password Hashi values, which could result in an invasion of the database service authentication operation.

Hazard Level

Low

Vulnerability Type

访问控制错误

Affected Vendor

西门子

Published

2025-10-14

Last Modified

2026-02-24

References

https://cert-portal.siemens.com/productcert/html/ssa-062309.html