Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
7.5
SICAM SIAPP SDK versions < V2.1.7 can crash or allow unauthorized code execution
CVE-2026-25570
Summary
If you use SICAM SIAPP SDK versions older than 2.1.7, an attacker could potentially crash your system or run unauthorized code. This is because the software doesn't check the data it receives properly. Update to version 2.1.7 or later to fix this issue.
What to do
No fix is available yet. Check with your software vendor for updates.
Affected software
| Vendor | Product | Affected versions | Fix available |
|---|---|---|---|
| siemens | sicam_siapp_sdk | <= 2.17 | – |
Original title
A vulnerability has been identified in SICAM SIAPP SDK (All versions < V2.1.7). The SICAM SIAPP SDK does not perform checks on input values potentially resulting in stack overflow. This could allow...
Original description
A vulnerability has been identified in SICAM SIAPP SDK (All versions < V2.1.7). The SICAM SIAPP SDK does not perform checks on input values potentially resulting in stack overflow. This could allow an attacker to perform code execution and denial of service.
nvd CVSS3.1
7.4
nvd CVSS4.0
7.5
Vulnerability type
CWE-121
Stack-based Buffer Overflow
Published: 10 Mar 2026 · Updated: 13 Mar 2026 · First seen: 11 Mar 2026