4 matches found
CVE-2025-32835
A vulnerability has been identified in TeleControl Server Basic All versions V3.1.2.2. The affected application is vulnerable to SQL injection through the internally used 'UpdateConnectionVariableArchivingBuffering' method. This could allow an authenticated remote attacker to bypass authorization...
CVE-2025-32835
A vulnerability has been identified in TeleControl Server Basic All versions V3.1.2.2. The affected application is vulnerable to SQL injection through the internally used 'UpdateConnectionVariableArchivingBuffering' method. This could allow an authenticated remote attacker to bypass authorization...
CVE-2025-32835
A vulnerability has been identified in TeleControl Server Basic All versions V3.1.2.2. The affected application is vulnerable to SQL injection through the internally used 'UpdateConnectionVariableArchivingBuffering' method. This could allow an authenticated remote attacker to bypass authorization...
CVE-2025-32835
Summary of technical details (CVE-2025-32835): Siemens TeleControl Server Basic (versions before 3.1.2.2) is affected by SQL injection via the internal UpdateConnectionVariableArchivingBuffering method. An authenticated remote attacker could bypass authorization, read/write the app’s database, an...