Vulnerabilities > CVE-2023-48429 - Improper Check for Unusual or Exceptional Conditions vulnerability in Siemens Sinec INS 1.0
Attack vector
NETWORK Attack complexity
LOW Privileges required
HIGH Confidentiality impact
NONE Integrity impact
NONE Availability impact
LOW Summary
A vulnerability has been identified in SINEC INS (All versions < V1.0 SP2 Update 2). The Web UI of affected devices does not check the length of parameters in certain conditions. This allows a malicious admin to crash the server by sending a crafted request to the server. The server will automatically restart.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 5 |