Lucene search
HistoryJul 09, 2024 - 12:15 p.m.
CVE-2024-39876
vulnerability
sinema remote connect server
log rotation
denial of service
resource exhaustion
CVSS3
4
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
LOW
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
EPSS
0
Percentile
13.2%
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP1). Affected applications do not properly handle log rotation. This could allow an unauthenticated remote attacker to cause a denial of service condition through resource exhaustion on the device.
Affected configurations
Node
siemenssinema_remote_connect_serverRange<3.2
ORsiemenssinema_remote_connect_serverMatch3.2-
| Vendor | Product | Version | CPE |
|---|---|---|---|
| siemens | sinema_remote_connect_server | * | cpe:2.3:a:siemens:sinema_remote_connect_server:*:*:*:*:*:*:*:* |
| siemens | sinema_remote_connect_server | 3.2 | cpe:2.3:a:siemens:sinema_remote_connect_server:3.2:-:*:*:*:*:*:* |
Related
vulnrichment
vulnrichment
CVE-2024-39876
2024-07-09 12:05:34
cvelist
cvelist
CVE-2024-39876
2024-07-09 12:05:34
cve
cve
CVE-2024-39876
2024-07-09 12:15:20
ics
ics
Siemens Remote Connect Server
2024-07-11 12:00:00
CVSS3
4
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
LOW
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
EPSS
0
Percentile
13.2%
Related for NVD:CVE-2024-39876