Unrated severityNVD Advisory· Published Dec 9, 2025· Updated Dec 9, 2025
CVE-2025-40830
CVE-2025-40830
Description
A vulnerability has been identified in SINEC Security Monitor (All versions < V4.10.0). The affected application does not have proper authorization checks for the file_transfer feature in ssmctl-client command. This could allow an authenticated, lowly privileged local attacker to read or write to any file on server or sensor.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1- Range: 0
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.