Siemens Telecontrol Server Basic vulnerabilities

CVE-2025-32862 [HIGH] CWE-89 CVE-2025-32862: A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affec A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used 'LockTraceLevelSettings' method. This could allow an authenticated remote attacker to bypass authorization controls, to read from and write to the application's database and execu

CVE-2025-32832 [HIGH] CWE-89 CVE-2025-32832: A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affec A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used 'LockProjectUserRights' method. This could allow an authenticated remote attacker to bypass authorization controls, to read from and write to the application's database and execut

CVE-2025-29905 [HIGH] CWE-89 CVE-2025-29905: A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affec A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used 'RestoreFromBackup' method. This could allow an authenticated remote attacker to bypass authorization controls, to read from and write to the application's database and execute co

CVE-2025-32827 [HIGH] CWE-89 CVE-2025-32827: A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affec A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used 'ActivateProject' method. This could allow an authenticated remote attacker to bypass authorization controls, to read from and write to the application's database and execute code

CVE-2025-32840 [HIGH] CWE-89 CVE-2025-32840: A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affec A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used 'LockGateway' method. This could allow an authenticated remote attacker to bypass authorization controls, to read from and write to the application's database and execute code wit

CVE-2025-32869 [HIGH] CWE-89 CVE-2025-32869: A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affec A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used 'ImportCertificate' method. This could allow an authenticated remote attacker to bypass authorization controls, to read from and write to the application's database and execute co

CVE-2025-32822 [HIGH] CWE-89 CVE-2025-32822: A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affec A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used 'DeleteProject' method. This could allow an authenticated remote attacker to bypass authorization controls, to read from and write to the application's database and execute code w

CVE-2025-30031 [HIGH] CWE-89 CVE-2025-30031: A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affec A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used 'UpdateUsers' method. This could allow an authenticated remote attacker to bypass authorization controls, to read from and write to the application's database and execute code wit

CVE-2025-32872 [HIGH] CWE-89 CVE-2025-32872: A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affec A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used 'GetOverview' method. This could allow an authenticated remote attacker to bypass authorization controls, to read from and write to the application's database and execute code wit

CVE-2025-32845 [HIGH] CWE-89 CVE-2025-32845: A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affec A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used 'UpdateGeneralSettings' method. This could allow an authenticated remote attacker to bypass authorization controls, to read from and write to the application's database and execut

CVE-2024-44102 [CRITICAL] CWE-502 CVE-2024-44102: A vulnerability has been identified in PP TeleControl Server Basic 1000 to 5000 V3.1 (6NH9910-0AA31- A vulnerability has been identified in PP TeleControl Server Basic 1000 to 5000 V3.1 (6NH9910-0AA31-0AE1) (All versions < V3.1.2.1 with redundancy configured), PP TeleControl Server Basic 256 to 1000 V3.1 (6NH9910-0AA31-0AD1) (All versions < V3.1.2.1 with redundancy configured), PP TeleControl Server Basic 32 to 64 V3.1 (6NH9910-0AA31-0AF1) (All v

CVE-2021-45117 [MEDIUM] CWE-476 CVE-2021-45117: The OPC autogenerated ANSI C stack stubs (in the NodeSets) do not handle all error cases. This can l The OPC autogenerated ANSI C stack stubs (in the NodeSets) do not handle all error cases. This can lead to a NULL pointer dereference.

CVE-2021-40142 [HIGH] CWE-119 CVE-2021-40142: In OPC Foundation Local Discovery Server (LDS) before 1.04.402.463, remote attackers can cause a den In OPC Foundation Local Discovery Server (LDS) before 1.04.402.463, remote attackers can cause a denial of service (DoS) by sending carefully crafted messages that lead to Access of a Memory Location After the End of a Buffer.

CVE-2019-6575 [HIGH] CWE-248 CVE-2019-6575: A vulnerability has been identified in SIMATIC CP 443-1 OPC UA (All versions), SIMATIC ET 200SP Open A vulnerability has been identified in SIMATIC CP 443-1 OPC UA (All versions), SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) (All versions = V2.5 < V2.6.1), SIMATIC S7-1500 Software Controller (All versions between V2.5 (including) and V2.7 (excluding)), SIMATIC WinCC OA (All versions < V3.15 P018), SIMATIC WinCC Runtime Advanc

CVE-2018-4837 [HIGH] CWE-400 CVE-2018-4837: A vulnerability has been identified in TeleControl Server Basic < V3.1. An attacker with access to t A vulnerability has been identified in TeleControl Server Basic < V3.1. An attacker with access to the TeleControl Server Basic's webserver (port 80/tcp or 443/tcp) could cause a Denial-of-Service condition on the web server. The remaining functionality of the TeleControl Server Basic is not affected by the Denial-of-Service condition.

CVE-2018-4836 [HIGH] CWE-287 CVE-2018-4836: A vulnerability has been identified in TeleControl Server Basic < V3.1. An authenticated attacker wi A vulnerability has been identified in TeleControl Server Basic < V3.1. An authenticated attacker with a low-privileged account to the TeleControl Server Basic's port 8000/tcp could escalate his privileges and perform administrative operations.

CVE-2018-4835 [MEDIUM] CWE-287 CVE-2018-4835: A vulnerability has been identified in TeleControl Server Basic < V3.1. An attacker with network acc A vulnerability has been identified in TeleControl Server Basic < V3.1. An attacker with network access to the TeleControl Server Basic's port 8000/tcp could bypass the authentication mechanism and read limited information.