Lucene search
K

287 matches found

Cvelist
Cvelist
added 2024/07/09 12:5 p.m.35 views

CVE-2024-39876

A vulnerability has been identified in SINEMA Remote Connect Server All versions V3.2 SP1. Affected applications do not properly handle log rotation. This could allow an unauthenticated remote attacker to cause a denial of service condition through resource exhaustion on the device...

5.3CVSS0.00206EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/07/09 12:5 p.m.17 views

CVE-2024-39876

A vulnerability has been identified in SINEMA Remote Connect Server All versions V3.2 SP1. Affected applications do not properly handle log rotation. This could allow an unauthenticated remote attacker to cause a denial of service condition through resource exhaustion on the device...

5.3CVSS7AI score0.00206EPSS
Exploits0References1
CVE
CVE
added 2024/07/09 12:5 p.m.58 views

CVE-2024-39876

CVE-2024-39876 affects Siemens SINEMA Remote Connect Server: all versions before 3.2 SP1 fail to properly handle log rotation, enabling a DoS via resource exhaustion. Public documents consistently cite the vulnerability as impacting the server and describe the root cause as log-rotation handling ...

5.3CVSS7AI score0.00206EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2024/07/09 12:5 p.m.20 views

CVE-2024-39875

A vulnerability has been identified in SINEMA Remote Connect Server All versions V3.2 SP1. The affected application allows authenticated, low privilege users with the 'Manage own remote connections' permission to retrieve details about other users and group memberships...

5.3CVSS7.1AI score0.00259EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/07/09 12:5 p.m.26 views

CVE-2024-39875

A vulnerability has been identified in SINEMA Remote Connect Server All versions V3.2 SP1. The affected application allows authenticated, low privilege users with the 'Manage own remote connections' permission to retrieve details about other users and group memberships...

5.3CVSS0.00259EPSS
Exploits0References1
CVE
CVE
added 2024/07/09 12:5 p.m.57 views

CVE-2024-39875

Siemens SINEMA Remote Connect Server (all versions

5.3CVSS6.9AI score0.00259EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2024/07/09 12:5 p.m.31 views

CVE-2024-39874

A vulnerability has been identified in SINEMA Remote Connect Server All versions V3.2 SP1. The affected application does not properly implement brute force protection against user credentials in its Client Communication component. This could allow an attacker to learn user credentials that are...

8.7CVSS0.00409EPSS
Exploits0References1
CVE
CVE
added 2024/07/09 12:5 p.m.100 views

CVE-2024-39873

Summary: CVE-2024-39873 affects Siemens SINEMA Remote Connect Server (all versions before V3.2 SP1). The security issue is a failure to properly implement brute-force protection on the web API authentication, which could allow an attacker to learn user credentials vulnerable to brute force attack...

8.7CVSS6.8AI score0.00445EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2024/07/09 12:5 p.m.50 views

CVE-2024-39873

A vulnerability has been identified in SINEMA Remote Connect Server All versions V3.2 SP1. The affected application does not properly implement brute force protection against user credentials in its web API. This could allow an attacker to learn user credentials that are vulnerable to brute force...

8.7CVSS0.00445EPSS
Exploits0References1
CVE
CVE
added 2024/07/09 12:5 p.m.77 views

CVE-2024-39872

Siemens SINEMA Remote Connect Server (all versions

9.9CVSS7AI score0.00475EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2024/07/09 12:5 p.m.41 views

CVE-2024-39872

A vulnerability has been identified in SINEMA Remote Connect Server All versions V3.2 SP1. The affected application does not properly assign rights to temporary files created during its update process. This could allow an authenticated attacker with the 'Manage firmware updates' role to escalate...

9.6CVSS0.00475EPSS
Exploits0References1
CVE
CVE
added 2024/07/09 12:5 p.m.55 views

CVE-2024-39871

Issue summary: CVE-2024-39871 affects Siemens SINEMA Remote Connect Server (all versions

6.3CVSS6.8AI score0.00221EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2024/07/09 12:5 p.m.32 views

CVE-2024-39871

A vulnerability has been identified in SINEMA Remote Connect Server All versions V3.2 SP1. Affected applications do not properly separate the rights to edit device settings and to edit settings for communication relations. This could allow an authenticated attacker with the permission to manage...

6.3CVSS0.00221EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/07/09 12:5 p.m.17 views

CVE-2024-39871

A vulnerability has been identified in SINEMA Remote Connect Server All versions V3.2 SP1. Affected applications do not properly separate the rights to edit device settings and to edit settings for communication relations. This could allow an authenticated attacker with the permission to manage...

6.3CVSS7.1AI score0.00221EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/07/09 12:5 p.m.28 views

CVE-2024-39870

A vulnerability has been identified in SINEMA Remote Connect Server All versions V3.2 SP1. The affected applications can be configured to allow users to manage own users. A local authenticated user with this privilege could use this modify users outside of their own scope as well as to escalate...

7.1CVSS0.00248EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/07/09 12:5 p.m.19 views

CVE-2024-39870

A vulnerability has been identified in SINEMA Remote Connect Server All versions V3.2 SP1. The affected applications can be configured to allow users to manage own users. A local authenticated user with this privilege could use this modify users outside of their own scope as well as to escalate...

7.1CVSS7AI score0.00248EPSS
Exploits0References1
CVE
CVE
added 2024/07/09 12:5 p.m.54 views

CVE-2024-39870

CVE-2024-39870 concerns Siemens SINEMA Remote Connect Server (All versions

7.8CVSS6.8AI score0.00248EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2024/07/09 12:5 p.m.19 views

CVE-2024-39869

A vulnerability has been identified in SINEMA Remote Connect Server All versions V3.2 SP1. Affected products allow to upload certificates. An authenticated attacker could upload a crafted certificates leading to a permanent denial-of-service situation. In order to recover from such an attack, the...

7.1CVSS6.6AI score0.0028EPSS
Exploits0References1
CVE
CVE
added 2024/07/09 12:5 p.m.54 views

CVE-2024-39869

Siemens SINEMA Remote Connect Server is affected: all versions prior to V3.2 SP1 allow uploading certificates, and an authenticated attacker can upload crafted certificates that cause a permanent Denial-of-Service. The vulnerability stems from improper handling during certificate upload (unusual/...

7.1CVSS6.6AI score0.0028EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2024/07/09 12:5 p.m.41 views

CVE-2024-39868

A vulnerability has been identified in SINEMA Remote Connect Server All versions V3.2 SP1. Affected devices do not properly validate the authentication when performing certain actions in the web interface allowing an unauthenticated attacker to access and edit VxLAN configuration information of...

7.6CVSS0.00361EPSS
Exploits0References1
Rows per page
Query Builder