VDB

CESS-2022-32260

CESS-2022-32260 PUBLISHED CVSS 9.8 CRITICAL

A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP1). The affected application creates temporary user credentials for UMC (User Management Component) users. An attacker could use these temporary credentials for authentication bypass in certain scenarios.

Risk Scores

CVSS 3.1
9.8
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Timeline

  • Jun 14, 2022 CVE Published
Open in Interactive Console →
$ Console Community · 100/wk Open console ›