SSA-334944 — Vulnetix

SSA-334944 PUBLISHED CVSS 6.5 MEDIUM

Multiple vulnerabilities in SINEMA Remote Connect Server could allow an unauthorized remote attacker to retrieve or manipulate sensitive information from the affected software. In addition, the attacker could also cause a Denial-of-Service condition in devices controlled by the affected software. Siemens has released an update for the SINEMA Remote Connect Server and recommends to update to the latest version.

Risk Scores

CVSS 3.1

6.5

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N/E:P/RL:O/RC:C

Affected Products

Vendor	Product	Versions
	SINEMA Remote Connect Server

Exploit Intelligence

https://cert-portal.siemens.com/productcert/pdf/ssa-334944.pdf (circl)
https://cert-portal.siemens.com/productcert/txt/ssa-334944.txt (circl)
https://cert-portal.siemens.com/productcert/csaf/ssa-334944.json (circl)
https://support.industry.siemens.com/cs/de/en/view/109793790/ (circl)

Timeline

CVE Published

References

https://cert-portal.siemens.com/productcert/pdf/ssa-334944.pdf advisory
https://cert-portal.siemens.com/productcert/txt/ssa-334944.txt advisory
https://cert-portal.siemens.com/productcert/csaf/ssa-334944.json advisory
https://support.industry.siemens.com/cs/de/en/view/109793790/ fix

Open in Interactive Console →