CVE-2025-32475
The CVE-2025-32475 entry affects Siemens TeleControl Server Basic before version 3.1.2.2. The vulnerability is a SQL injection in the internal UpdateProject path that can let an authenticated remote attacker bypass authorization, read/write the app DB, and execute code with NT AUTHORITY\NetworkSe...