SQL Injection Vulnerability in TeleControl Server Basic by Siemens
CVE-2025-31353

8.7HIGH

Key Information:

Vendor
Siemens
Status
Telecontrol Server Basic
Vendor
CVE Published:
16 April 2025

Summary

A vulnerability exists in TeleControl Server Basic versions prior to 3.1.2.2, which is susceptible to SQL injection through the 'UpdateOpcSettings' method. This security flaw allows an authenticated attacker to bypass authorization controls, gaining access to the application's database for reading or writing data, and executing malicious code with permissions associated with 'NT AUTHORITY\NetworkService'. To successfully exploit this vulnerability, an attacker must have access to port 8000 on a system running the vulnerable application.

Affected Version(s)

TeleControl Server Basic 0

References

https://cert-portal.siemens.com/productcert/html/ssa-4434...

CVSS V4

Score:
8.7
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Attack Required:
None
Privileges Required:
Undefined
User Interaction:
None

Timeline

  • Vulnerability published

.