VYPR

Telecontrol Server Basic

by Siemens Foundation

CVEs (77)

  • CVE-2025-32856HigApr 16, 2025
    risk 0.57cvss 8.8epss 0.00

    A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used 'LockBufferingSettings' method. This could allow an authenticated remote attacker to bypass…

  • CVE-2025-32855HigApr 16, 2025
    risk 0.57cvss 8.8epss 0.00

    A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used 'UnlockOpcSettings' method. This could allow an authenticated remote attacker to bypass authorization…

  • CVE-2025-32854HigApr 16, 2025
    risk 0.57cvss 8.8epss 0.01

    A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used 'LockOpcSettings' method. This could allow an authenticated remote attacker to bypass authorization…

  • CVE-2025-32853HigApr 16, 2025
    risk 0.57cvss 8.8epss 0.01

    A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used 'UnlockDatabaseSettings' method. This could allow an authenticated remote attacker to bypass…

  • CVE-2025-32852HigApr 16, 2025
    risk 0.57cvss 8.8epss 0.01

    A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used 'LockDatabaseSettings' method. This could allow an authenticated remote attacker to bypass authorization…

  • CVE-2025-32851HigApr 16, 2025
    risk 0.57cvss 8.8epss 0.01

    A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used 'UnlockTcmSettings' method. This could allow an authenticated remote attacker to bypass authorization…

  • CVE-2025-32850HigApr 16, 2025
    risk 0.57cvss 8.8epss 0.01

    A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used 'LockTcmSettings' method. This could allow an authenticated remote attacker to bypass authorization…

  • CVE-2025-32849HigApr 16, 2025
    risk 0.57cvss 8.8epss 0.01

    A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used 'UnlockSmtpSettings' method. This could allow an authenticated remote attacker to bypass authorization…

  • CVE-2025-32848HigApr 16, 2025
    risk 0.57cvss 8.8epss 0.01

    A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used 'LockSmtpSettings' method. This could allow an authenticated remote attacker to bypass authorization…

  • CVE-2025-32847HigApr 16, 2025
    risk 0.57cvss 8.8epss 0.01

    A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used 'UnlockGeneralSettings' method. This could allow an authenticated remote attacker to bypass…

  • CVE-2025-32846HigApr 16, 2025
    risk 0.57cvss 8.8epss 0.01

    A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used 'LockGeneralSettings' method. This could allow an authenticated remote attacker to bypass authorization…

  • CVE-2025-32845HigApr 16, 2025
    risk 0.57cvss 8.8epss 0.01

    A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used 'UpdateGeneralSettings' method. This could allow an authenticated remote attacker to bypass…

  • CVE-2025-32844HigApr 16, 2025
    risk 0.57cvss 8.8epss 0.01

    A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used 'UnlockUser' method. This could allow an authenticated remote attacker to bypass authorization controls,…

  • CVE-2025-32843HigApr 16, 2025
    risk 0.57cvss 8.8epss 0.01

    A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used 'LockUser' method. This could allow an authenticated remote attacker to bypass authorization controls,…

  • CVE-2025-32842HigApr 16, 2025
    risk 0.57cvss 8.8epss 0.01

    A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used 'GetUsers' method. This could allow an authenticated remote attacker to bypass authorization controls,…

  • CVE-2025-32841HigApr 16, 2025
    risk 0.57cvss 8.8epss 0.01

    A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used 'UnlockGateway' method. This could allow an authenticated remote attacker to bypass authorization…

  • CVE-2025-32840HigApr 16, 2025
    risk 0.57cvss 8.8epss 0.01

    A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used 'LockGateway' method. This could allow an authenticated remote attacker to bypass authorization…

  • CVE-2025-32839HigApr 16, 2025
    risk 0.57cvss 8.8epss 0.01

    A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used 'GetGateways' method. This could allow an authenticated remote attacker to bypass authorization…

  • CVE-2025-32838HigApr 16, 2025
    risk 0.57cvss 8.8epss 0.01

    A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used 'ImportConnectionVariables' method. This could allow an authenticated remote attacker to bypass…

  • CVE-2025-32837HigApr 16, 2025
    risk 0.57cvss 8.8epss 0.01

    A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used 'GetActiveConnectionVariables' method. This could allow an authenticated remote attacker to bypass…