Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cnvdChina National Vulnerability DatabaseCNVD-2021-61124
HistoryAug 11, 2021 - 12:00 a.m.

Siemens SINEC NMS OS Command Injection Vulnerability

2021-08-1100:00:00
China National Vulnerability Database
www.cnvd.org.cn
4
siemens
sinec nms
command injection
network management system
security vulnerability
industrial networks
arbitrary code execution
system privileges
remote attack

EPSS

0.002

Percentile

55.2%

JSON

Siemens SINEC NMS is a network management system (NMS) from Siemens Germany that is used to centrally monitor, manage, and configure industrial networks with tens of thousands of devices 24/7, including safety-related areas.A security vulnerability exists in versions prior to Siemens SINEC NMS 1.0 SP2, which stems from The application incorrectly neutralized special elements when creating a batch operation that could lead to command injection. An authenticated remote attacker with administrative privileges could exploit this vulnerability to execute arbitrary code on a system with system privileges.

Related

cvelist 1
cve 1
prion 1
nvd 1
ics 1
cvelist
cvelist
CVE-2021-33721
2021-08-10 10:35:32
cve
cve
CVE-2021-33721
2021-08-10 11:15:09
prion
prion
Command injection
2021-08-10 11:15:00
nvd
nvd
CVE-2021-33721
2021-08-10 11:15:09
ics
ics
Siemens SINEC NMS
2021-08-10 12:00:00

EPSS

0.002

Percentile

55.2%

JSON
Related for CNVD-2021-61124
cvelist1cve1prion1nvd1ics1