CVE-2026-12104 SIMA GmbH CVE debrief

Who should care

Defenders of SIMA GmbH Bondix installations, particularly those using version 1.25.7.5 or earlier on Linux, should be aware of this vulnerability. The issue requires authentication and configuration write access, but could lead to significant impact if exploited.

Technical summary

The vulnerability exists in the environment and tunnel configuration functionality of Bondix. An authenticated attacker with configuration write access can inject OS commands through crafted configuration values. This issue is caused by inadequate sanitization of user input in server-side scripts. The CVSS vector is CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:Y/R:U/V:X/RE:L/U:Amber.

Defensive priority

High priority due to high CVSS score and potential for significant impact

Recommended defensive actions

• Inventory Bondix installations and verify version numbers
• Review and limit configuration write access to trusted users
• Monitor for suspicious configuration changes
• Apply vendor-supported remediation when available
• Review server-side scripts for input sanitization

Evidence notes

The primary evidence for this CVE comes from the NVD and CVE.org records. The vulnerability affects Bondix version 1.25.7.5 and earlier on Linux. Defenders should verify the version of Bondix in use and review configuration access controls.

Official resources