287 matches found
CVE-2021-37191
CVE-2021-37191 affects Siemens SINEMA Remote Connect Server: all versions prior to 3.0 SP2 are vulnerable to an unauthenticated attacker on the same network brute-forcing usernames. The Red Hat and CNVD/Wikipedia entries corroborate the impact as an in-network username enumeration risk; ICSA note...
CVE-2021-37183
A vulnerability has been identified in SINEMA Remote Connect Server All versions V3.0 SP2. The affected software allows sending send-to-sleep notifications to the managed devices. An unauthenticated attacker in the same network of the affected system can abuse these notifications to cause a...
CVE-2021-37183
Siemens SINEMA Remote Connect Server is affected by CVE-2021-37183 (vulnerable: all versions before 3.0 SP2). An unauthenticated attacker on the same network can abuse the send-to-sleep notification mechanism to cause a Denial-of-Service on managed devices. The issue is described as an access-con...
CVE-2021-37177
A vulnerability has been identified in SINEMA Remote Connect Server All versions V3.0 SP2. The status provided by the syslog clients managed by the affected software can be manipulated by an unauthenticated attacker in the same network of the affected system...
CVE-2021-37177
The CVE-2021-37177 entry affects Siemens SINEMA Remote Connect Server (all versions before 3.0 SP2). The vulnerability allows an unauthenticated attacker on the same network to manipulate the status provided by managed syslog clients, indicating a modification of assumed-immutable data (CWE-471) ...
Siemens SINEMA Remote Connect Server 安全漏洞
Siemens SINEMA Remote Connect Server is a remote network management platform from Siemens, Germany. The platform is used to remotely access, maintain, control and diagnose the underlying network. A security vulnerability exists in Siemens SINEMA Remote Connect Server versions prior to 3.0 SP2,...
PT-2021-21559 · Siemens · Sinema Remote Connect Server
Name of the Vulnerable Software and Affected Versions: SINEMA Remote Connect Server versions prior to V3.0 SP2 Description: A vulnerability has been identified that allows an unauthenticated attacker in the same network to abuse send-to-sleep notifications and cause a Denial-of-Service condition ...
Siemens SINEMA Remote Connect Server
1. EXECUTIVE SUMMARY CVSS v3 7.4 ATTENTION: Exploitable remotely/low attack complexity Vendor: Siemens Equipment: SINEMA Remote Connect Server Vulnerabilities: Modification of Assumed-Immutable Data, Improper Access Control, Exposure of Sensitive Information to an Unauthorized Actor, Improper...
SINEMA Remote Connect Server 安全漏洞
Siemens SINEMA Remote Connect Server is a remote network management platform from Siemens, a German company. The platform is primarily used to remotely access, maintain, control, and diagnose the underlying network. SIEMENS SINEMA Remote Connect Server is vulnerable to a code execution...
Siemens SINEMA Remote Connect Server
1. EXECUTIVE SUMMARY CVSS v3 7.5 ATTENTION: Exploitable remotely/low attack complexity Vendor: Siemens Equipment: SINEMA Remote Connect Server Vulnerabilities: Missing Release of Resource after Effective Lifetime, Infinite Loop 2. RISK EVALUATION Successful exploitation of these vulnerabilities...
CVE-2020-25240
A vulnerability has been identified in SINEMA Remote Connect Server All versions V3.0. Unpriviledged users can access services when guessing the url. An attacker could impact availability, integrity and gain information from logs and templates of the service...
CVE-2020-25239
A vulnerability has been identified in SINEMA Remote Connect Server All versions V3.0. The webserver could allow unauthorized actions via special urls for unpriviledged users. The settings of the UMC authorization server could be changed to add a rogue server by an attacker authenticating with...
Design/Logic Flaw
A vulnerability has been identified in SINEMA Remote Connect Server All versions V3.0. Unpriviledged users can access services when guessing the url. An attacker could impact availability, integrity and gain information from logs and templates of the service...
CVE-2020-25239
A vulnerability has been identified in SINEMA Remote Connect Server All versions V3.0. The webserver could allow unauthorized actions via special urls for unpriviledged users. The settings of the UMC authorization server could be changed to add a rogue server by an attacker authenticating with...
CVE-2020-25239
CVE-2020-25239 affects SINEMA Remote Connect Server (all versions prior to v3.0). The vulnerability is an Incorrect Authorization (CWE-863) where a webserver could allow unauthorized actions via special URLs for unprivileged users, enabling an attacker authenticated with limited rights to modify ...
CVE-2020-25240
A vulnerability has been identified in SINEMA Remote Connect Server All versions V3.0. Unpriviledged users can access services when guessing the url. An attacker could impact availability, integrity and gain information from logs and templates of the service...
CVE-2020-25240
CVE-2020-25240 affects SINEMA Remote Connect Server (all versions
Siemens SINEMA Remote Connect Server Incorrect Authorization Vulnerability (CNVD-2021-16436)
Siemens SINEMA Remote Connect Server is a remote network management platform from Siemens, Germany. The platform is used to remotely access, maintain, control and diagnose the underlying network. An incorrect authorization vulnerability exists in Siemens SINEMA Remote Connect Server. The...
Siemens SINEMA Remote Connect Server 安全漏洞
Siemens SINEMA Remote Connect Server is a remote network management platform from Siemens, Germany. The platform is used to remotely access, maintain, control and diagnose the underlying network. An incorrect authorization vulnerability exists in Siemens SINEMA Remote Connect Server. An attacker...
Siemens SINEMA Remote Connect Server
1. EXECUTIVE SUMMARY CVSS v3 8.8 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Siemens Equipment: SINEMA Remote Connect Server Vulnerabilities: Incorrect Authorization\ 2. RISK EVALUATION Successful exploitation of these vulnerabilities could allow authenticated unprivileged...