VYPR

Sicore Base

by Siemens Foundation

CVEs (4)

  • CVE-2024-37998CriJul 22, 2024
    risk 0.64cvss 9.8epss 0.00

    A vulnerability has been identified in CPCI85 Central Processing/Communication (All versions < V5.40), SICORE Base system (All versions < V1.4.0). The password of administrative accounts of the affected applications can be reset without requiring the knowledge of the current…

  • CVE-2026-27664HigMar 26, 2026
    risk 0.49cvss 7.5epss 0.00

    A vulnerability has been identified in CPCI85 Central Processing/Communication (All versions < V26.10), SICORE Base system (All versions < V26.10.0). The affected application contains an out-of-bounds write vulnerability while parsing specially crafted XML inputs. This could…

  • CVE-2024-31485HigMay 14, 2024
    risk 0.47cvss 7.2epss 0.02

    A vulnerability has been identified in CPCI85 Central Processing/Communication (All versions < V5.30), SICORE Base system (All versions < V1.3.0). The web interface of affected devices is vulnerable to command injection due to missing server side input sanitation. This could…

  • CVE-2024-39601MedJul 22, 2024
    risk 0.42cvss 6.5epss 0.01

    A vulnerability has been identified in CPCI85 Central Processing/Communication (All versions < V5.40), SICORE Base system (All versions < V1.4.0). Affected devices allow a remote authenticated user or an unauthenticated user with physical access to downgrade the firmware of the…