SSA-605717 — Vulnetix

SSA-605717 PUBLISHED CVSS 8.800000190734863 HIGH

SINEC NMS before V4.0 SP3 contains an Authorization Bypass vulnerability that could allow an attacker to bypass authorization checks, leading to the ability to reset the password of any arbitrary user account. Siemens has released a new version for SINEC NMS and recommends to update to the latest version.

Risk Scores

CVSS 3.1

8.800000190734863

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected Products

Vendor	Product	Versions
	SINEC NMS

Exploit Intelligence

https://cert-portal.siemens.com/productcert/html/ssa-605717.html (circl)
https://cert-portal.siemens.com/productcert/csaf/ssa-605717.json (circl)
https://support.industry.siemens.com/cs/ww/en/view/110000760/ (circl)

Timeline

Apr 14, 2026 CVE Published

References

https://cert-portal.siemens.com/productcert/html/ssa-605717.html advisory
https://cert-portal.siemens.com/productcert/csaf/ssa-605717.json advisory
https://support.industry.siemens.com/cs/ww/en/view/110000760/ fix

Open in Interactive Console →