2 matches found
CVE-2022-24281
CVE-2022-24281 affects Siemens SINEC NMS (prior to v1.0.3) and SINEMA Server v14. Root cause is improper neutralization of special elements in SQL commands (SQL Injection). A privileged, authenticated attacker could send crafted requests to the webserver to execute arbitrary commands in the local...
CVE-2022-24281
A vulnerability has been identified in SINEC NMS All versions V1.0.3, SINEMA Server V14 All versions. A privileged authenticated attacker could execute arbitrary commands in the local database by sending specially crafted requests to the webserver of the affected application...