VDB

CVE-2019-10941

CVE-2019-10941 PUBLISHED CVSS 5.300000190734863 MEDIUM

A vulnerability has been identified in SINEMA Server (All versions < V14 SP3). Missing authentication for functionality that requires administrative user identity could allow an attacker to obtain encoded system configuration backup files. This is only possible through network access to the affected system, and successful exploitation requires no system privileges.

EPSS 0.18% · 40.0th percentile

Risk Scores

CVSS 3.1
5.300000190734863
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
EPSS Score
0.18%
40.0th percentile

Affected Products

VendorProductVersions
SiemensSINEMA ServerAll versions < V14 SP3
siemenssinema_server0, 14.0, 14.0

Exploit Intelligence

Timeline

  • Apr 13, 2021 CVE Published
  • Sep 15, 2021 EPSS Score
  • Nov 11, 2021 EPSS Score
  • Jan 8, 2022 EPSS Score
  • Mar 6, 2022 EPSS Score
  • May 3, 2022 EPSS Score
  • Jun 29, 2022 EPSS Score
  • Aug 27, 2022 EPSS Score
  • Oct 23, 2022 EPSS Score
  • Dec 20, 2022 EPSS Score
  • Feb 15, 2023 EPSS Score
  • Mar 7, 2023 EPSS Score

References

…and 2 more

Open in Interactive Console →
$ Console Community · 100/wk Open console ›