Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
5.9
SICAM SIAPP SDK Crashes with Oversized Input
CVE-2026-25571
Summary
If you're using SICAM SIAPP SDK versions before 2.1.7, an attacker could send a large input that crashes the system, potentially causing it to shut down and become unavailable. This could disrupt your business operations. Update to version 2.1.7 or later to fix the issue.
What to do
No fix is available yet. Check with your software vendor for updates.
Affected software
| Vendor | Product | Affected versions | Fix available |
|---|---|---|---|
| siemens | sicam_siapp_sdk | <= 2.17 | – |
Original title
A vulnerability has been identified in SICAM SIAPP SDK (All versions < V2.1.7). The SICAM SIAPP SDK client component does not enforce maximum length checks on certain variables before use. This cou...
Original description
A vulnerability has been identified in SICAM SIAPP SDK (All versions < V2.1.7). The SICAM SIAPP SDK client component does not enforce maximum length checks on certain variables before use. This could allow an attacker to send an oversized input that could trigger a stack overflow crashing the process and potentially causing denial of service.
nvd CVSS3.1
5.1
nvd CVSS4.0
5.9
Vulnerability type
CWE-130
Published: 10 Mar 2026 · Updated: 13 Mar 2026 · First seen: 11 Mar 2026