CVE-2026-25570 HIGH

CVE-2026-25570

Vendor Siemens
Product SICAM SIAPP SDK
Weakness CWE-121
Published March 10, 2026
Last update March 10, 2026

CVSS base score

7.4/10
Attack vector Local
Attack complexity High
Privileges required None
User interaction None
Confidentiality High
Integrity High

CVSS vector

CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

What the vulnerability does

01Description

A vulnerability has been identified in SICAM SIAPP SDK (All versions < V2.1.7). The SICAM SIAPP SDK does not perform checks on input values potentially resulting in stack overflow. This could allow an attacker to perform code execution and denial of service.

Key dates

02Disclosure timeline

March 10, 2026 CVE published
March 10, 2026 Record updated