By weakness (CWE)

CWE-26: related vulnerabilities

CVEs classified under CWE-26. Understanding the weakness class helps prioritize systemic fixes over one-off patches.

1 published vulnerability

  • CVE-2026-46747MEDIUM 4.3

    SINEC INS, Siemens' network security appliance, contains a path traversal vulnerability in its file upload API endpoint. An authenticated user can craft malicious directory paths to access files outside their intended scope on the server. The vulnerability affects all versions prior to V1.0 SP2 Update 6 and requires valid login credentials to exploit, limiting but not eliminating risk in environments where account compromise or insider threats are concerns.