SSA-801704 — Vulnetix

SSA-801704 PUBLISHED CVSS 7.300000190734863 HIGH

Siemens SINEC NMS when used with User Management Component (UMC) contains an authentication bypass vulnerability due to insufficient validation of user identity. This could allow an unauthenticated remote attacker to bypass authentication and gain unauthorized access to the application. Siemens has released a new version for SINEC NMS and recommends to update to the latest version.

Risk Scores

CVSS 3.1

7.300000190734863

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

Affected Products

Vendor	Product	Versions
	SINEC NMS

Exploit Intelligence

https://cert-portal.siemens.com/productcert/html/ssa-801704.html (circl)
https://cert-portal.siemens.com/productcert/csaf/ssa-801704.json (circl)
https://support.industry.siemens.com/cs/ww/en/view/110000760/ (circl)

Timeline

Apr 14, 2026 CVE Published

References

https://cert-portal.siemens.com/productcert/html/ssa-801704.html advisory
https://cert-portal.siemens.com/productcert/csaf/ssa-801704.json advisory
https://support.industry.siemens.com/cs/ww/en/view/110000760/ fix

Open in Interactive Console →