Unrated severityNVD Advisory· Published Aug 12, 2025· Updated Aug 12, 2025

CVE-2024-41979

Description

A vulnerability has been identified in SmartClient modules Opcenter QL Home (SC) (All versions >= V13.2 < V2506), SOA Audit (All versions >= V13.2 < V2506), SOA Cockpit (All versions >= V13.2 < V2506). The affected application does not enforce mandatory authorization on some functionality level at server side. This could allow an authenticated attacker to gain complete access of the application.

Affected products

Siemens/SmartClient modules Opcenter QL Home (SC)v5
Range: V13.2
Siemens/SOA Auditv5
Range: V13.2
Siemens/SOA Cockpitv5
Range: V13.2

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

cert-portal.siemens.com/productcert/html/ssa-382999.htmlmitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000