Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
5.9
SICAM SIAPP SDK crashes when receiving overly long input
CVE-2026-25572
Summary
The SICAM SIAPP SDK server component doesn't check for overly long input. This could cause the server to crash, making it unavailable to users. Update to version 2.1.7 or later to fix this issue.
What to do
No fix is available yet. Check with your software vendor for updates.
Affected software
| Vendor | Product | Affected versions | Fix available |
|---|---|---|---|
| siemens | sicam_siapp_sdk | <= 2.17 | – |
Original title
A vulnerability has been identified in SICAM SIAPP SDK (All versions < V2.1.7). The SICAM SIAPP SDK server component does not enforce maximum length checks on certain variables before use. This cou...
Original description
A vulnerability has been identified in SICAM SIAPP SDK (All versions < V2.1.7). The SICAM SIAPP SDK server component does not enforce maximum length checks on certain variables before use. This could allow an attacker to send an oversized input that could trigger a stack overflow crashing the process and potentially causing denial of service.
nvd CVSS3.1
5.1
nvd CVSS4.0
5.9
Vulnerability type
CWE-130
Published: 10 Mar 2026 · Updated: 13 Mar 2026 · First seen: 11 Mar 2026