Back to CVE List

CVE-2026-24032

HIGH SEVERITY

CVSS Score & Metrics

Base Score
7.3 / 10
Vector String
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

Vulnerability Description

A vulnerability has been identified in SINEC NMS (All versions < V4.0 SP3 with UMC). The affected application contains an authentication weakness due to insufficient validation of user identity in the UMC component.
This could allow an unauthenticated remote attacker to bypass authentication and gain unauthorized access to the application. (ZDI-CAN-27564)

Vulnerability Details

Published Date
Last Modified
CWE ID
CWE-347
Source
NVD
Vendor
Siemens
Product
SINEC NMS

External References

Discussion (0)

Add Comment

No comments yet. Be the first!