VYPR

SICAM SIAPP SDK

by Siemens Foundation

CVEs (6)

  • CVE-2026-25605Mar 10, 2026
    risk 0.00cvss epss 0.00

    A vulnerability has been identified in SICAM SIAPP SDK (All versions < V2.1.7). The affected application performs file deletion without properly validating the file path or target. An attacker could delete files or sockets that the affected process has permission to remove,…

  • CVE-2026-25573Mar 10, 2026
    risk 0.00cvss epss 0.00

    A vulnerability has been identified in SICAM SIAPP SDK (All versions < V2.1.7). The affected application builds shell commands with caller-provided strings and executes them. An attacker could influence the executed command, potentially resulting in command injection and full…

  • CVE-2026-25572Mar 10, 2026
    risk 0.00cvss epss 0.00

    A vulnerability has been identified in SICAM SIAPP SDK (All versions < V2.1.7). The SICAM SIAPP SDK server component does not enforce maximum length checks on certain variables before use. This could allow an attacker to send an oversized input that could trigger a stack…

  • CVE-2026-25571Mar 10, 2026
    risk 0.00cvss epss 0.00

    A vulnerability has been identified in SICAM SIAPP SDK (All versions < V2.1.7). The SICAM SIAPP SDK client component does not enforce maximum length checks on certain variables before use. This could allow an attacker to send an oversized input that could trigger a stack…

  • CVE-2026-25570Mar 10, 2026
    risk 0.00cvss epss 0.00

    A vulnerability has been identified in SICAM SIAPP SDK (All versions < V2.1.7). The SICAM SIAPP SDK does not perform checks on input values potentially resulting in stack overflow. This could allow an attacker to perform code execution and denial of service.

  • CVE-2026-25569Mar 10, 2026
    risk 0.00cvss epss 0.00

    A vulnerability has been identified in SICAM SIAPP SDK (All versions < V2.1.7). An out-of-bounds write vulnerability exists in SICAM SIAPP SDK. This could allow an attacker to write data beyond the intended buffer, potentially leading to denial of service, or arbitrary code…