Vulnerabilities > CVE-2021-33724 - Unspecified vulnerability in Siemens Sinec NMS 1.0

CVSS 9.1 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

siemens

critical

NVD

Published: 2021-10-12

Updated: 2024-11-21

Summary

A vulnerability has been identified in SINEC NMS (All versions < V1.0 SP2 Update 1). The affected system contains an Arbitrary File Deletion vulnerability that possibly allows to delete an arbitrary file or directory under a user controlled path.

Vulnerable Configurations

Part	Description	Count
Application	Siemens Siemens Sinec NMS 1.0 Siemens Sinec NMS *	4

References

https://cert-portal.siemens.com/productcert/pdf/ssa-163251.pdf
https://cert-portal.siemens.com/productcert/pdf/ssa-163251.pdf