SSA-318832 — Vulnetix

SSA-318832 PUBLISHED CVSS 8.800000190734863 HIGH

SINEC NMS is affected by SQL injection vulnerability that could allow an authenticated low privileged attacker to exploit by inserting malicious data and achieve privilege escalation. Siemens has released a new version for SINEC NMS and recommends to update to the latest version.

Risk Scores

CVSS 3.1

8.800000190734863

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected Products

Vendor	Product	Versions
	SINEC NMS

Exploit Intelligence

https://cert-portal.siemens.com/productcert/html/ssa-318832.html (circl)
https://cert-portal.siemens.com/productcert/csaf/ssa-318832.json (circl)
https://support.industry.siemens.com/cs/ww/en/view/109995116/ (circl)

Timeline

Oct 14, 2025 CVE Published

References

https://cert-portal.siemens.com/productcert/html/ssa-318832.html advisory
https://cert-portal.siemens.com/productcert/csaf/ssa-318832.json advisory
https://support.industry.siemens.com/cs/ww/en/view/109995116/ fix

Open in Interactive Console →