CVE-2026-46746: CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') in Siemens SINEC INS
A vulnerability has been identified in SINEC INS (All versions < V1.0 SP2 Update 6). The application does not properly sanitize user input in the /api/sftp/uploadFiles endpoint, allowing the injection of shell command payloads via crafted directory names. These payloads are stored and executed when directory listings are retrieved. This could allow an authenticated remote attacker to execute arbitrary commands on the underlying operating system with the privileges of the affected service user (sinecins).
AI Analysis
Technical Summary
Siemens SINEC INS versions before 1.0 SP2 Update 6 contain an OS command injection vulnerability (CWE-78) in the /api/sftp/uploadFiles endpoint. The application fails to properly neutralize special elements in user-supplied directory names, permitting injection of shell command payloads. These payloads are stored and executed later during directory listing retrieval, allowing an authenticated remote attacker to execute arbitrary commands on the underlying OS with the service user's privileges.
Potential Impact
Successful exploitation allows an authenticated remote attacker to execute arbitrary operating system commands with the privileges of the sinecins service user. This can lead to full compromise of the affected system, including confidentiality, integrity, and availability impacts as indicated by the CVSS score of 8.8 (high severity).
Mitigation Recommendations
Patch status is not yet confirmed — check the vendor advisory for current remediation guidance. Until an official fix is available, restrict access to the /api/sftp/uploadFiles endpoint to trusted users only and monitor for suspicious activity. Avoid using vulnerable versions and apply updates once Siemens releases an official fix.
CVE-2026-46746: CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') in Siemens SINEC INS
Description
A vulnerability has been identified in SINEC INS (All versions < V1.0 SP2 Update 6). The application does not properly sanitize user input in the /api/sftp/uploadFiles endpoint, allowing the injection of shell command payloads via crafted directory names. These payloads are stored and executed when directory listings are retrieved. This could allow an authenticated remote attacker to execute arbitrary commands on the underlying operating system with the privileges of the affected service user (sinecins).
CVSS v3.1
Score 8.8high
Weaknesses
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
Siemens SINEC INS versions before 1.0 SP2 Update 6 contain an OS command injection vulnerability (CWE-78) in the /api/sftp/uploadFiles endpoint. The application fails to properly neutralize special elements in user-supplied directory names, permitting injection of shell command payloads. These payloads are stored and executed later during directory listing retrieval, allowing an authenticated remote attacker to execute arbitrary commands on the underlying OS with the service user's privileges.
Potential Impact
Successful exploitation allows an authenticated remote attacker to execute arbitrary operating system commands with the privileges of the sinecins service user. This can lead to full compromise of the affected system, including confidentiality, integrity, and availability impacts as indicated by the CVSS score of 8.8 (high severity).
Mitigation Recommendations
Patch status is not yet confirmed — check the vendor advisory for current remediation guidance. Until an official fix is available, restrict access to the /api/sftp/uploadFiles endpoint to trusted users only and monitor for suspicious activity. Avoid using vulnerable versions and apply updates once Siemens releases an official fix.
Technical Details
- Data Version
- 5.2
- Assigner Short Name
- siemens
- Date Reserved
- 2026-05-18T09:37:25.766Z
- Cvss Version
- 3.1
- State
- PUBLISHED
- Remediation Level
- null
Threat ID: 6a27e6ab8dd33fbd8514c96d
Added to database: 6/9/2026, 10:10:51 AM
Last enriched: 6/9/2026, 10:30:56 AM
Last updated: 6/10/2026, 5:10:33 AM
Views: 5
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
External Links
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.