CNNVD-202512-1521 Information
Dec 09, 2025
cve
CNNVD ID
CNNVD-202512-1521
Related CVE
- CNNVD Published: 2025-12-09
Description (Chinese)
Siemens SINEC Security Monitor是德国西门子(Siemens)公司的一个工业安防监控器。 Siemens SINEC Security Monitor V4.10.0之前版本存在授权问题漏洞,该漏洞源于ssmctl-client命令中file_transfer功能缺少授权检查,可能导致任意文件读写。
Description (English)
Siemens SINAC Security Monitor is an industrial security monitor of Siemens, Germany. The previous version of Siemens SINAC Security Monitor V4.10.0 had a mandate gap, which stemmed from the lack of authorization for the file transfer function in the ssmctl-client command, which could lead to the reading and writing of any document.
Hazard Level
High
Vulnerability Type
授权问题
Affected Vendor
西门子
Published
2025-12-09
Last Modified
2026-02-24
References
https://cert-portal.siemens.com/productcert/html/ssa-882673.html
Patch
https://cert-portal.siemens.com/productcert/html/ssa-882673.html
Share on: