Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

Siemens Remote Connect Server

🗓️ 09 Jul 2024 00:00:00Reported by Industrial Control Systems Cyber Emergency Response TeamType 
ics
 ics🔗 www.cisa.gov👁 36 Views

Siemens Remote Connect Server security advisory, multiple vulnerabilities, potential privileges escalation, remote code execution, and denial-of-service ris

Related
Refs
ReporterTitlePublishedViews
Family
ATTACKERKB		CVE-2022-32260
14 Jun 202210:15
attackerkb
BDU FSTEC		The vulnerability of the SINEMA Remote Connect VPN service lies in its ability to download files of a dangerous type without restrictions, allowing a hacker to execute arbitrary code.
23 Jul 202400:00
bdu_fstec
BDU FSTEC		The vulnerability of the SINEMA Remote Connect VPN service lies in the insecure management of privileges, allowing a malicious actor to create a user with administrator privileges.
23 Jul 202400:00
bdu_fstec
BDU FSTEC		The vulnerability of the SINEMA Remote Connect client web interface, related to security mechanism errors, allows a perpetrator to view and edit protected information regarding device configurations.
23 Jul 202400:00
bdu_fstec
BDU FSTEC		The vulnerability of the SINEMA Remote Connect client web interface, related to security mechanism failures, allows attackers to view and edit protected information regarding VxLAN network configurations.
23 Jul 202400:00
bdu_fstec
BDU FSTEC		The vulnerability of Siemens SINEMA Remote Connect lies in the insufficient checking of unusual or exceptional states, allowing a perpetrator to trigger a service failure.
14 Nov 202400:00
bdu_fstec
BDU FSTEC		The vulnerability of Siemens SINEMA Remote Connect allows a hacker to gain unauthorized access to groups of participants to which they do not have permission to access.
14 Nov 202400:00
bdu_fstec
BDU FSTEC		The vulnerability of Siemens SINEMA Remote Connect lies in the implementation of security features at the client side, which allows attackers to enhance their privileges.
18 Nov 202400:00
bdu_fstec
BDU FSTEC		The vulnerability of the Firmware Update Handler component of the Siemens SINEMA Remote Connect server allows a hacker to gain increased privileges.
26 Nov 202400:00
bdu_fstec
BDU FSTEC		The vulnerability of the Client Communication component of the Siemens SINEMA Remote Connect server allows a hacker to obtain encrypted user credentials.
26 Nov 202400:00
bdu_fstec
Rows per page

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
09 Jul 2024 00:00Current
9High risk
Vulners AI Score9
CVSS 27.5
CVSS 3.19.6 - 9.9
CVSS 49.3
EPSS0.10551
SSVC
siemensremote connect servericssecurity advisoriesvulnerabilitiesprivileges escalationdenial-of-serviceremote code executioncvsscwe-286cwe-434cwe-267
36