High severity8.5NVD Advisory· Published Jan 10, 2023· Updated Jun 17, 2026
CVE-2022-45093
CVE-2022-45093
Description
A vulnerability has been identified in SINEC INS (All versions < V1.0 SP2 Update 1). An authenticated remote attacker with access to the Web Based Management (443/tcp) of the affected product as well as with access to the SFTP server of the affected product (22/tcp), could potentially read and write arbitrary files from and to the device's file system. An attacker might leverage this to trigger remote code execution on the affected component.
Affected products
2- Range: All versions < V1.0 SP2 Update 1
Patches
Vulnerability mechanics
References
1- cert-portal.siemens.com/productcert/pdf/ssa-332410.pdfnvdVendor Advisory
News mentions
0No linked articles in our index yet.