A vulnerability classified as critical was found in Siemens SINEC NMS up to 2.0 SP1. This vulnerability affects unknown code of the component API Endpoint. The manipulation leads to path traversal.
This vulnerability was named CVE-2024-31978. The attack can be initiated remotely. There is no exploit available.
It is recommended to apply a patch to fix this issue.