VDB

CVE-2026-46749

CVE-2026-46749 PUBLISHED CVSS 8.800000190734863 HIGH

SINEC INS before V1.0 SP2 Update 6 is affected by multiple vulnerabilities. Siemens has released a new version for SINEC INS and recommends to update to the latest version. The following versions of Siemens SINEC INS are affected: SINEC INS vers:intdot/ CVSS Vendor Equipment Vulnerabilities v3 8.8 Siemens Siemens SINEC INS Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection'), Path Traversal: '/dir/../filename', Execution with Unnecessary Privileges, Use of a One-Way Hash with a Predictable Salt Background Critical Infrastructure Sectors: Critical Manufacturing, Transportation Systems, Energy, Healthcare and Public Health, Financial Services, Government Services and Facilities Countries/Areas Deployed: Worldwide Company Headquarters Location: Germany

EPSS 0.12% · 2.2th percentile

Risk Scores

CVSS 3.1
8.800000190734863
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS Score
0.12%
2.2th percentile

Timeline

  • Jun 9, 2026 CVE Published
  • Jun 9, 2026 CVE Updated
  • Jun 10, 2026 Coalition ESS Score
  • Jun 23, 2026 EPSS Score
Open in Interactive Console →
$ Console Community · 100/wk Open console ›