CVE-2021-33732 - AskarLabs CVE Database

CVE-2021-33732

Vendor Siemens

Product SINEC NMS

Weakness CWE-89 · SQLi

Published October 12, 2021

Last update August 3, 2024

View on NVD All CVEs

CVSS base score

—

What the vulnerability does

01Description

A vulnerability has been identified in SINEC NMS (All versions < V1.0 SP2 Update 1). A privileged authenticated attacker could execute arbitrary commands in the local database by sending crafted requests to the webserver of the affected application.

Key dates

02Disclosure timeline

October 12, 2021 CVE published

August 3, 2024 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2021-33732 CWE — Common Weakness Enumeration https://cwe.mitre.org/data/definitions/89.html

Related vulnerabilities

04Related CVE

CVE-2021-29114 SQL injection vulnerability in ArcGIS Server CVE-2024-11729 KiviCare – Clinic & Patient Management System (EHR) <= 3.6.4 - Authenticated (Subscriber+) SQL Injection CVE-2024-12785 itsourcecode Vehicle Management System sendmail.php sql injection CVE-2025-14989 Campcodes Complete Online Beauty Parlor Management System search-invoices.php sql injection CVE-2023-4485 ARDEREG Sistemas SCADA SQL Injection