CVE-2026-25573

High

CVSS 7.4EPSS 0.0%

Description

A vulnerability has been identified in SICAM SIAPP SDK (All versions < V2.1.7). The affected application builds shell commands with caller-provided strings and executes them. An attacker could influence the executed command, potentially resulting in command injection and full system compromise.

CVSS Score

7.4/ 10

CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS — Exploit Probability

0.0%

Higher than 6.0% of all CVEs

Weakness Classification (CWE)

CWE-73CWE-73MITRE

References (1)

https://cert-portal.siemens.com/productcert/html/ssa-903736.htmlproductcert@siemens.com

Risk Assessment

STANDARD

No elevated risk factors detected.

Details

Severity: High
CVSS: 7.4
EPSS: 0.0%
CWE: CWE-73
CISA KEV: No
Articles: 1

Timeline

Published

Mar 10, 2026

External Links

NVD (NIST)CVE Details MITRE CVE