Siemens SICAM SIAPP SDK <V2.1.7 Path Traversal Deletion Vulnerability
CVE-2026-25605 Published on March 10, 2026

A vulnerability has been identified in SICAM SIAPP SDK (All versions < V2.1.7). The affected application performs file deletion without properly validating the file path or target. An attacker could delete files or sockets that the affected process has permission to remove, potentially resulting in denial of service or service disruption.

NVD

Weakness Type

External Control of File Name or Path

The software allows user input to control or influence paths or file names that are used in filesystem operations.

Affected Versions

Siemens SICAM SIAPP SDK:

Before V2.1.7 is affected.

Exploit Probability

EPSS

0.01%

Percentile

3.29%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

Siemens SICAM SIAPP SDK <V2.1.7 Path Traversal Deletion VulnerabilityCVE-2026-25605 Published on March 10, 2026

Weakness Type

External Control of File Name or Path

Affected Versions

Exploit Probability

Siemens SICAM SIAPP SDK <V2.1.7 Path Traversal Deletion Vulnerability
CVE-2026-25605 Published on March 10, 2026