Medium severity5.3NVD Advisory· Published Nov 12, 2024· Updated Jun 17, 2026
CVE-2024-46889
CVE-2024-46889
Description
A vulnerability has been identified in SINEC INS (All versions < V1.0 SP2 Update 3). The affected application uses hard-coded cryptographic key material to obfuscate configuration files. This could allow an attacker to learn that cryptographic key material through reverse engineering of the application binary and decrypt arbitrary backup files.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2<V1.0 SP2 Update 3+ 1 more
- (no CPE)range: <V1.0 SP2 Update 3
- (no CPE)range: 0
Patches
Vulnerability mechanics
References
1- cert-portal.siemens.com/productcert/html/ssa-915275.htmlnvdVendor Advisory
News mentions
0No linked articles in our index yet.