VYPR

Telecontrol Server Basic

by Siemens Foundation

CVEs (77)

  • CVE-2025-32836HigApr 16, 2025
    risk 0.57cvss 8.8epss 0.01

    A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used 'GetConnectionVariables' method. This could allow an authenticated remote attacker to bypass…

  • CVE-2025-32835HigApr 16, 2025
    risk 0.57cvss 8.8epss 0.01

    A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used 'UpdateConnectionVariableArchivingBuffering' method. This could allow an authenticated remote attacker…

  • CVE-2025-32834HigApr 16, 2025
    risk 0.57cvss 8.8epss 0.01

    A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used 'UpdateConnectionVariablesWithImport' method. This could allow an authenticated remote attacker to…

  • CVE-2025-32833HigApr 16, 2025
    risk 0.57cvss 8.8epss 0.01

    A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used 'UnlockProjectUserRights' method. This could allow an authenticated remote attacker to bypass…

  • CVE-2025-32832HigApr 16, 2025
    risk 0.57cvss 8.8epss 0.01

    A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used 'LockProjectUserRights' method. This could allow an authenticated remote attacker to bypass…

  • CVE-2025-32831HigApr 16, 2025
    risk 0.57cvss 8.8epss 0.01

    A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used 'UpdateProjectUserRights' method. This could allow an authenticated remote attacker to bypass…

  • CVE-2025-32830HigApr 16, 2025
    risk 0.57cvss 8.8epss 0.01

    A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used 'UnlockProject' method. This could allow an authenticated remote attacker to bypass authorization…

  • CVE-2025-32829HigApr 16, 2025
    risk 0.57cvss 8.8epss 0.01

    A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used 'LockProjectCrossCommunications' method. This could allow an authenticated remote attacker to bypass…

  • CVE-2025-32828HigApr 16, 2025
    risk 0.57cvss 8.8epss 0.01

    A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used 'UpdateProjectCrossCommunications' method. This could allow an authenticated remote attacker to bypass…

  • CVE-2025-32827HigApr 16, 2025
    risk 0.57cvss 8.8epss 0.01

    A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used 'ActivateProject' method. This could allow an authenticated remote attacker to bypass authorization…

  • CVE-2025-32826HigApr 16, 2025
    risk 0.57cvss 8.8epss 0.01

    A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used 'GetActiveProjects' method. This could allow an authenticated remote attacker to bypass authorization…

  • CVE-2025-32825HigApr 16, 2025
    risk 0.57cvss 8.8epss 0.01

    A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used 'GetProjects' method. This could allow an authenticated remote attacker to bypass authorization…

  • CVE-2025-32824HigApr 16, 2025
    risk 0.57cvss 8.8epss 0.01

    A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used 'UnlockProject' method. This could allow an authenticated remote attacker to bypass authorization…

  • CVE-2025-32823HigApr 16, 2025
    risk 0.57cvss 8.8epss 0.01

    A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used 'LockProject' method. This could allow an authenticated remote attacker to bypass authorization…

  • CVE-2025-32822HigApr 16, 2025
    risk 0.57cvss 8.8epss 0.01

    A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used 'DeleteProject' method. This could allow an authenticated remote attacker to bypass authorization…

  • CVE-2025-32475HigApr 16, 2025
    risk 0.57cvss 8.8epss 0.01

    A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used 'UpdateProject' method. This could allow an authenticated remote attacker to bypass authorization…

  • CVE-2025-31353HigApr 16, 2025
    risk 0.57cvss 8.8epss 0.01

    A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used 'UpdateOpcSettings' method. This could allow an authenticated remote attacker to bypass authorization…

  • CVE-2025-31352HigApr 16, 2025
    risk 0.57cvss 8.8epss 0.01

    A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used 'UpdateGateways' method. This could allow an authenticated remote attacker to bypass authorization…

  • CVE-2025-31351HigApr 16, 2025
    risk 0.57cvss 8.8epss 0.01

    A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used 'CreateProject' method. This could allow an authenticated remote attacker to bypass authorization…

  • CVE-2025-31350HigApr 16, 2025
    risk 0.57cvss 8.8epss 0.01

    A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used 'UpdateBufferingSettings' method. This could allow an authenticated remote attacker to bypass…