A vulnerability, which was classified as problematic, was found in Siemens SINEC INS up to 1.0 SP2 Update 2. This affects an unknown part of the component Configuration File Handler. The manipulation leads to use of hard-coded cryptographic key
.

This vulnerability is uniquely identified as CVE-2024-46889. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to apply a patch to fix this issue.