Siemens

Telecontrol Server Basic

76 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.8

CVE-2025-40765

  • EPSS 0.12%
  • Veröffentlicht 14.10.2025 09:15:16
  • Zuletzt bearbeitet 21.10.2025 14:40:15

A vulnerability has been identified in TeleControl Server Basic V3.1 (All versions >= V3.1.2.2 < V3.1.2.3). The affected application contains an information disclosure vulnerability. This could allow an unauthenticated remote attacker to obtain passw...

6.3

CVE-2025-29931

  • EPSS 0.17%
  • Veröffentlicht 17.04.2025 11:15:47
  • Zuletzt bearbeitet 19.08.2025 14:48:34

A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected product does not properly validate a length field in a serialized message which it uses to determine the amount of memory to be allocated for dese...

8.8

CVE-2025-32872

  • EPSS 0.26%
  • Veröffentlicht 16.04.2025 17:39:00
  • Zuletzt bearbeitet 19.08.2025 15:04:01

A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used 'GetOverview' method. This could allow an authenticated remote attacker to ...

8.8

CVE-2025-32871

  • EPSS 0.26%
  • Veröffentlicht 16.04.2025 17:38:58
  • Zuletzt bearbeitet 19.08.2025 15:04:10

A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used 'MigrateDatabase' method. This could allow an authenticated remote attacker...

8.8

CVE-2025-32870

  • EPSS 0.26%
  • Veröffentlicht 16.04.2025 17:38:57
  • Zuletzt bearbeitet 19.08.2025 15:04:20

A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used 'GetTraces' method. This could allow an authenticated remote attacker to by...

8.8

CVE-2025-32869

  • EPSS 0.18%
  • Veröffentlicht 16.04.2025 17:38:55
  • Zuletzt bearbeitet 19.08.2025 15:04:28

A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used 'ImportCertificate' method. This could allow an authenticated remote attack...

8.8

CVE-2025-32868

  • EPSS 0.18%
  • Veröffentlicht 16.04.2025 17:38:54
  • Zuletzt bearbeitet 19.08.2025 15:04:35

A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used 'ExportCertificate' method. This could allow an authenticated remote attack...

8.8

CVE-2025-32867

  • EPSS 0.26%
  • Veröffentlicht 16.04.2025 17:38:53
  • Zuletzt bearbeitet 19.08.2025 15:04:41

A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used 'CreateBackup' method. This could allow an authenticated remote attacker to...

8.8

CVE-2025-32866

  • EPSS 0.26%
  • Veröffentlicht 16.04.2025 17:38:51
  • Zuletzt bearbeitet 19.08.2025 15:04:48

A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used 'GetLogs' method. This could allow an authenticated remote attacker to bypa...

8.8

CVE-2025-32865

  • EPSS 0.26%
  • Veröffentlicht 16.04.2025 17:38:50
  • Zuletzt bearbeitet 19.08.2025 15:04:57

A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used 'CreateLog' method. This could allow an authenticated remote attacker to by...