SSA-835377 — Vulnetix

SSA-835377 PUBLISHED CVSS 4.699999809265137 MEDIUM

The latest update for SINEMA Server fixes a vulnerability that could allow an unauthenticated attacker to obtain encoded system configuration backup files under certain conditions. Siemens has released an update for the SINEMA Server and recommends to update to the latest version.

Risk Scores

CVSS 3.1

4.699999809265137

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:N/A:N/E:P/RL:O/RC:C

Affected Products

Vendor	Product	Versions
	SINEMA Server

Exploit Intelligence

https://cert-portal.siemens.com/productcert/pdf/ssa-835377.pdf (circl)
https://cert-portal.siemens.com/productcert/txt/ssa-835377.txt (circl)
https://cert-portal.siemens.com/productcert/csaf/ssa-835377.json (circl)
https://support.industry.siemens.com/cs/ww/en/view/109801374/ (circl)

Timeline

CVE Published

References

https://cert-portal.siemens.com/productcert/pdf/ssa-835377.pdf advisory
https://cert-portal.siemens.com/productcert/txt/ssa-835377.txt advisory
https://cert-portal.siemens.com/productcert/csaf/ssa-835377.json advisory
https://support.industry.siemens.com/cs/ww/en/view/109801374/ fix

Open in Interactive Console →