CVE-2025-32854 | Siemens TeleControl Server Basic 3.1.2.1 LockOpcSettings sql injection (ssa-443402)

A vulnerability, which was classified as critical, was found in Siemens TeleControl Server Basic 3.1.2.1. This affects the function LockOpcSettings. The manipulation leads to sql injection.

This vulnerability is uniquely identified as CVE-2025-32854. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.VulDB Recent EntriesRead More