Lucene search
K

287 matches found

Prion
Prion
added 2019/04/17 2:29 p.m.18 views

Design/Logic Flaw

A vulnerability has been identified in SINEMA Remote Connect Server All versions V2.0. Due to insufficient checking of user permissions, an attacker may access URLs that require special authorization. An attacker must have access to a low privileged account in order to exploit the vulnerability...

9CVSS8.7AI score0.01351EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2019/04/17 1:40 p.m.54 views

CVE-2019-6570

CVE-2019-6570 affects Siemens SINEMA Remote Connect Server (all versions prior to 2.0). The root cause is an insufficient checking of user permissions, enabling an attacker with a low-privileged account and network access to reach URLs that require special authorization, impacting confidentiality...

9CVSS8.3AI score0.01351EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2019/04/17 1:40 p.m.17 views

CVE-2019-6570

A vulnerability has been identified in SINEMA Remote Connect Server All versions V2.0. Due to insufficient checking of user permissions, an attacker may access URLs that require special authorization. An attacker must have access to a low privileged account in order to exploit the vulnerability...

8.4AI score0.01351EPSS
Exploits0References1
OSV
OSV
added 2016/07/22 3:59 p.m.3 views

CVE-2016-6204

Cross-site scripting XSS vulnerability in the integrated web server in Siemens SINEMA Remote Connect Server before 1.2 allows remote attackers to inject arbitrary web script or HTML via a crafted URL...

6.1CVSS5.9AI score0.0161EPSS
Exploits0References3
Prion
Prion
added 2016/07/22 3:59 p.m.13 views

Cross site scripting

Cross-site scripting XSS vulnerability in the integrated web server in Siemens SINEMA Remote Connect Server before 1.2 allows remote attackers to inject arbitrary web script or HTML via a crafted URL...

4.3CVSS6.1AI score0.0161EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2016/07/22 3:0 p.m.48 views

CVE-2016-6204

CVE-2016-6204 describes a Cross-Site Scripting (XSS) vulnerability in the integrated web server of Siemens SINEMA Remote Connect Server (all versions before 1.2). The issue allows an attacker to inject script/HTML via a crafted URL, with remote exploitation possible and potential for read-access ...

6.1CVSS6AI score0.0161EPSS
Exploits0References3Affected Software1
ICS
ICS
added 2016/04/29 6:0 a.m.51 views

Siemens SINEMA Remote Connect Server Cross-site Scripting Vulnerability

OVERVIEW Researchers Antonio Morales Maldonado of INNOTEC SYSTEM, and Alexander Van Maele and Tijl Deneut of Howest have identified a cross-site scripting XSS vulnerability in the Siemens SINEMA Remote Connect Server application. Siemens has produced an update to mitigate this vulnerability. This...

6.1CVSS6.5AI score0.0161EPSS
Exploits0References10
Rows per page
Query Builder