CVE-2025-13483
published 2025-11-25CVE-2025-13483: SiRcom SMART Alert (SiSA) allows unauthorized access to backend APIs. This allows an unauthenticated attacker to bypass the login screen using browser…
PriorityP260high8.8CVSS 4.0
AVNACLATNPRNUINVCNVIHVAHSCNSINSANEXCRXIRXARXMAVXMACXMATXMPRXMUIXMVCXMVIXMVAXMSCXMSIXMSAXSXAUXRXVXREXUX
EPSS
0.31%
22.3th percentile
SiRcom SMART Alert (SiSA) allows unauthorized access to backend APIs. This allows an unauthenticated attacker to bypass the login screen using browser developer tools, gaining access to restricted parts of the application.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| sircom | smart_alert_sisa | — | — |
Detection & IOCsextracted from sources · hover to see the quote
- →Unauthenticated access to backend APIs is possible without valid credentials; monitor for requests to restricted API endpoints originating from unauthenticated sessions (no valid session token/cookie present). ↗
- →Alert on any network-originated (AV:N) unauthenticated requests that successfully reach backend API functions on SiSA Version 3.0.48, particularly those capable of activating or manipulating emergency sirens. ↗
- ·Only version 3.0.48 of SiRcom SMART Alert (SiSA) is confirmed affected; scope detection rules accordingly. ↗
- ·No patch is available at time of publication; SiRcom did not respond to CISA coordination. Mitigation relies on network segmentation and restricting internet exposure. ↗
- ·No known public exploitation has been reported at time of publication, but the vulnerability is remotely exploitable with low attack complexity and no authentication required. ↗
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
CISA ICS
SiRcom SMART Alert (SiSA)
cisa_ics·2025-11-25·CVSS 8.8
[HIGH] SiRcom SMART Alert (SiSA)
ICS Advisory
##
SiRcom SMART Alert (SiSA)
Release DateNovember 25, 2025
Alert CodeICSA-25-329-06
Related topics:
Industrial Control System Vulnerabilities, Industrial Control Systems
View CSAF
## 1. EXECUTIVE SUMMARY
- CVSS v4 8.8
- ATTENTION: Exploitable remotely/low attack complexity
- Vendor: SiRcom
- Equipment: SMART Alert (SiSA)
- Vulnerability: Missing Authentication for Critical Function
## 2. RISK EVALUATION
Successful exploitation of this vulnerability could enable an attacker to remotely activate or manipulate emergency sirens.
## 3. TECHNICAL DETAILS
## 3.1 AFFECTED PRODUCTS
The following versions of SiRcom SMART Alert (SiSA), a central control system, are affected:
- SMART Alert (SiSA): Version 3.0.48
## 3.2 VULNERABILITY OVERVIEW
## 3
GHSA
GHSA-p228-573m-h3r3: SiRcom SMART Alert (SiSA) allows unauthorized access to backend APIs
ghsa_unreviewed·2025-11-25
CVE-2025-13483 [HIGH] CWE-306 GHSA-p228-573m-h3r3: SiRcom SMART Alert (SiSA) allows unauthorized access to backend APIs
SiRcom SMART Alert (SiSA) allows unauthorized access to backend APIs. This allows an unauthenticated attacker to bypass the login screen using browser developer tools, gaining access to restricted parts of the application.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2025-11-25
Published