The vulnerability of the central control server of SiNVR 3 allows a hacker to read or modify the database of the central control server, as well as perform operations on the databases or operating system commands with administrator privileges.

The vulnerability of the central control server of SiNVR 3 Central Control Server lies in the lack of protective measures for the SQL query structure. Exploiting this vulnerability allows an attacker to remotely read or modify the central control server’s database, as well as perform operations o...

Siemens SiNVR 3 Plain Text Save File Vulnerability

SiNVR 3 is a video management platform.Central Control Server CCS is the central control server and Video Server is the video server. SiNVR 3 stores login credentials in plain text in a log file. An information disclosure vulnerability exists in the implementation, which can be exploited by a...

Siemens SiNVR 3 Cross-Site Scripting Vulnerability (CNVD-2020-17007)

SiNVR 3 is a video management platform.Central Control Server CCS is the central control server and Video Server is the video server. SiNVR 3 has a stored cross-site scripting vulnerability in multiple input field implementations that can be exploited by remote attackers to inject malicious...

Siemens SiNVR 3 Central Control Server (CCS) Authentication Bypass Vulnerability

SiNVR is the Siemens OEM version of SiVMS, a video management solution acquired by PKE Deutsch land gmmbH and formerly distributed by Schille Informationssysteme gmmbH. Siemens SiNVR 3 Central Control Server CCS has an authentication bypass vulnerability in its xml-based communication protocol. A...

Siemens SiNVR 3 Central Control Server (CCS) Directory Traversal Vulnerability

SiNVR is the Siemens OEM version of SiVMS, a video management solution acquired by PKE Deutsch land gmmbH and formerly distributed by Schille Informationssysteme gmmbH. Siemens SiNVR 3 Central Control Server CCS has a directory traversal vulnerability in its xml-based communication protocol. An...