Critical severity9.9NVD Advisory· Published Jan 10, 2023· Updated Jun 17, 2026
CVE-2022-45092
CVE-2022-45092
Description
A vulnerability has been identified in SINEC INS (All versions < V1.0 SP2 Update 1). An authenticated remote attacker with access to the Web Based Management (443/tcp) of the affected product, could potentially read and write arbitrary files from and to the device's file system. An attacker might leverage this to trigger remote code execution on the affected component.
Affected products
3<V1.0 SP2 Update 1+ 1 more
- (no CPE)range: <V1.0 SP2 Update 1
- (no CPE)range: All versions < V1.0 SP2 Update 1
Patches
Vulnerability mechanics
References
1- cert-portal.siemens.com/productcert/pdf/ssa-332410.pdfnvdVendor Advisory
News mentions
0No linked articles in our index yet.