378 matches found
The vulnerability of the UpdateOpcSettings method in the software for managing and monitoring removed objects in telemetry and telemechanics systems, allowing a perpetrator to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the UpdateOpcSettings method in the software for managing and monitoring removed objects in telemetry and telemechanics systems, such as the TeleControl Server Basic, is related to the lack of protective measures for the SQL query structure. Exploiting this vulnerability allo...
The vulnerability of the RestoreFromBackup method in software for managing and monitoring deleted objects in telemetry and telemechanics systems of the TeleControl Server Basic allows a perpetrator to compromise the confidentiality, integrity, and accessibility of protected information.
The vulnerability of the RestoreFromBackup method in software for managing and monitoring deleted objects in telemetry and telemechanics systems is related to the lack of protective measures for the SQL query structure. Exploiting this vulnerability allows an attacker to compromise the...
The vulnerability of the VerifyUser method in the software for managing and monitoring deleted objects in telemetry and telemechanics systems of the TeleControl Server Basic allows a perpetrator to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the VerifyUser method in software for managing and monitoring deleted objects in telemetry and telemechanics systems related to the lack of protective measures for the SQL query structure. Exploiting this vulnerability allows an attacker to compromise the confidentiality,...
CISA Releases Five Industrial Control Systems Advisories
CISA released five Industrial Control Systems ICS advisories on April 22, 2025. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-25-112-01 Siemens TeleControl Server Basic SQL ICSA-25-112-02 Siemens TeleControl Server...
Siemens TeleControl Server Basic SQL Injection Vulnerability (CNVD-2025-08597)
Siemens TeleControl Server Basic is an industrial remote controller from Siemens, Germany. Siemens TeleControl Server Basic suffers from a SQL injection vulnerability that originates from a SQL injection in the internal method LockOpcSettings, which can be exploited by an attacker to bypass...
Siemens TeleControl Server Basic SQL Injection Vulnerability (CNVD-2025-08363)
Siemens TeleControl Server Basic is an industrial remote controller from Siemens, Germany. Siemens TeleControl Server Basic suffers from an SQL injection vulnerability that originates from an SQL injection in the MigrateDatabase method, which can be exploited by an attacker to bypass authorizatio...
Siemens TeleControl Server Basic SQL Injection Vulnerability (CNVD-2025-08598)
Siemens TeleControl Server Basic is an industrial remote controller from Siemens, Germany. Siemens TeleControl Server Basic suffers from a SQL injection vulnerability that originates from a SQL injection in the internal method UnlockDatabaseSettings, which can be exploited by an attacker to bypas...
Siemens TeleControl Server Basic SQL Injection Vulnerability (CNVD-2025-08609)
Siemens TeleControl Server Basic is an industrial remote controller from Siemens, Germany. Siemens TeleControl Server Basic suffers from a SQL injection vulnerability that originates from a SQL injection in the internal method GetUsers, which can be exploited by an attacker to bypass authorizatio...
Siemens TeleControl Server Basic SQL Injection Vulnerability (CNVD-2025-08600)
Siemens TeleControl Server Basic is an industrial remote controller from Siemens, Germany. Siemens TeleControl Server Basic suffers from a SQL injection vulnerability that originates from a SQL injection in the internal method UnlockTcmSettings, which can be exploited by an attacker to bypass...
Siemens TeleControl Server Basic SQL Injection Vulnerability (CNVD-2025-08616)
Siemens TeleControl Server Basic is an industrial remote controller from Siemens, Germany. Siemens TeleControl Server Basic suffers from an SQL injection vulnerability that originates from an internal method UpdateConnectionVariableArchivingBuffering, which can be exploited by an attacker to bypa...
Siemens TeleControl Server Basic SQL Injection Vulnerability (CNVD-2025-08371)
Siemens TeleControl Server Basic is an industrial remote controller from Siemens, Germany. Siemens TeleControl Server Basic suffers from an SQL injection vulnerability that originates from an SQL injection in the UnlockTraceLevelSettings method, which can be exploited by an attacker to bypass...
Siemens TeleControl Server Basic SQL Injection Vulnerability (CNVD-2025-08603)
Siemens TeleControl Server Basic is an industrial remote controller from Siemens, Germany. Siemens TeleControl Server Basic suffers from a SQL injection vulnerability that originates from a SQL injection in the internal method LockSmtpSettings, which can be exploited by an attacker to bypass...
Siemens TeleControl Server Basic SQL Injection Vulnerability (CNVD-2025-09143)
Siemens TeleControl Server Basic is an industrial remote controller from Siemens, Germany. Siemens TeleControl Server Basic suffers from a SQL injection vulnerability that originates from the internally used 'UpdateOpcSettings' method. An attacker could exploit the vulnerability to cause bypass o...
Siemens TeleControl Server Basic SQL Injection Vulnerability (CNVD-2025-08361)
Siemens TeleControl Server Basic is an industrial remote controller from Siemens, Germany. Siemens TeleControl Server Basic suffers from a SQL injection vulnerability that originates from a SQL injection in the internal method GetProjects, which can be exploited by an attacker to bypass...
Siemens TeleControl Server Basic SQL Injection Vulnerability (CNVD-2025-08599)
Siemens TeleControl Server Basic is an industrial remote controller from Siemens, Germany. Siemens TeleControl Server Basic suffers from a SQL injection vulnerability that originates from a SQL injection in the internal method LockDatabaseSettings, which can be exploited by an attacker to bypass...
Siemens TeleControl Server Basic SQL Injection Vulnerability (CNVD-2025-08595)
Siemens TeleControl Server Basic is an industrial remote controller from Siemens, Germany. Siemens TeleControl Server Basic suffers from an SQL injection vulnerability that originates from an SQL injection in the LockBufferingSettings method, which can be exploited by an attacker to bypass...
Siemens TeleControl Server Basic SQL Injection Vulnerability (CNVD-2025-08594)
Siemens TeleControl Server Basic is an industrial remote controller from Siemens, Germany. Siemens TeleControl Server Basic suffers from an SQL injection vulnerability that originates from an SQL injection in the UnlockBufferingSettings method, which can be exploited by an attacker to bypass...
Siemens TeleControl Server Basic SQL Injection Vulnerability (CNVD-2025-08356)
Siemens TeleControl Server Basic is an industrial remote controller from Siemens, Germany. Siemens TeleControl Server Basic suffers from an SQL injection vulnerability that originates from an internal method, ImportDatabase, which can be exploited by an attacker to bypass authorization controls a...
Siemens TeleControl Server Basic SQL Injection Vulnerability (CNVD-2025-08369)
Siemens TeleControl Server Basic is an industrial remote controller from Siemens, Germany. Siemens TeleControl Server Basic suffers from an SQL injection vulnerability that originates from an SQL injection in the GetSettings method, which can be exploited by an attacker to bypass authorization...
Siemens TeleControl Server Basic SQL Injection Vulnerability (CNVD-2025-08596)
Siemens TeleControl Server Basic is an industrial remote controller from Siemens, Germany. Siemens TeleControl Server Basic suffers from a SQL injection vulnerability that originates from an internal method, UnlockOpcSettings, which can be exploited by an attacker to bypass authorization controls...