CVE-2026-25605

Medium

CVSS 6.7EPSS 0.0%

Description

A vulnerability has been identified in SICAM SIAPP SDK (All versions < V2.1.7). The affected application performs file deletion without properly validating the file path or target. An attacker could delete files or sockets that the affected process has permission to remove, potentially resulting in denial of service or service disruption.

CVSS Score

6.7/ 10

CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:H

EPSS — Exploit Probability

0.0%

Higher than 3.3% of all CVEs

Weakness Classification (CWE)

CWE-73CWE-73MITRE

References (1)

https://cert-portal.siemens.com/productcert/html/ssa-903736.htmlproductcert@siemens.com

Risk Assessment

STANDARD

No elevated risk factors detected.

Details

Severity: Medium
CVSS: 6.7
EPSS: 0.0%
CWE: CWE-73
CISA KEV: No
Articles: 1

Timeline

Published

Mar 10, 2026

External Links

NVD (NIST)CVE Details MITRE CVE