High severity8.4NVD Advisory· Published Jan 10, 2023· Updated Jun 17, 2026
CVE-2022-45094
CVE-2022-45094
Description
A vulnerability has been identified in SINEC INS (All versions < V1.0 SP2 Update 1). An authenticated remote attacker with access to the Web Based Management (443/tcp) of the affected product, could potentially inject commands into the dhcpd configuration of the affected product. An attacker might leverage this to trigger remote code execution on the affected component.
Affected products
3< V1.0 SP2 Update 1+ 1 more
- (no CPE)range: < V1.0 SP2 Update 1
- (no CPE)range: All versions < V1.0 SP2 Update 1
Patches
Vulnerability mechanics
References
1- cert-portal.siemens.com/productcert/pdf/ssa-332410.pdfnvdVendor Advisory
News mentions
0No linked articles in our index yet.