CVE-2025-26390 | Siemens OZW672/OZW772 up to 5.x Web Service sql injection (ssa-047424)

Inserito da Angelo Barbosa | Mag 13, 2025 | CVE

A vulnerability classified as critical was found in Siemens OZW672 and OZW772 up to 5.x. This vulnerability affects unknown code of the component Web Service. The manipulation leads to sql injection.

This vulnerability was named CVE-2025-26390. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-26390 | Siemens OZW672/OZW772 up to 5.x Web Service sql injection (ssa-047424)

Post correlati

CVE-2024-43492 | Microsoft AutoUpdate on macOS access control

CVE-2024-40657 | Google Android 12/12L/13/14 AccountTypePreferenceLoader.java addPreferencesForType denial of service

CVE-2024-36051 | btcd 0.24.2 Legacy Signature Verification removeOpcodeByData denial of service

CVE-2024-8667 | HurryTimer Plugin up to 2.10.0 on WordPress authorization