Siemens

Sinema Remote Connect Server

69 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.3

CVE-2021-37192

  • EPSS 0.08%
  • Veröffentlicht 14.09.2021 11:15:26
  • Zuletzt bearbeitet 23.04.2025 20:15:30

A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.0 SP2). The affected software has an information disclosure vulnerability that could allow an attacker to retrieve a list of network devices a known user can manag...

4.3

CVE-2021-37191

  • EPSS 0.1%
  • Veröffentlicht 14.09.2021 11:15:26
  • Zuletzt bearbeitet 23.04.2025 20:15:29

A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.0 SP2). An unauthenticated attacker in the same network of the affected system could brute force the usernames from the affected software.

4.3

CVE-2021-37193

  • EPSS 0.1%
  • Veröffentlicht 14.09.2021 11:15:26
  • Zuletzt bearbeitet 23.04.2025 20:15:30

A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.0 SP2). An unauthenticated attacker in the same network of the affected system could manipulate certain parameters and set a valid user of the affected software as...

4.3

CVE-2021-37190

  • EPSS 0.08%
  • Veröffentlicht 14.09.2021 11:15:25
  • Zuletzt bearbeitet 23.04.2025 20:15:29

A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.0 SP2). The affected software has an information disclosure vulnerability that could allow an attacker to retrieve VPN connection for a known user.

6.5

CVE-2021-37183

  • EPSS 0.13%
  • Veröffentlicht 14.09.2021 11:15:25
  • Zuletzt bearbeitet 23.04.2025 20:15:29

A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.0 SP2). The affected software allows sending send-to-sleep notifications to the managed devices. An unauthenticated attacker in the same network of the affected sy...

6.5

CVE-2021-37177

  • EPSS 0.1%
  • Veröffentlicht 14.09.2021 11:15:25
  • Zuletzt bearbeitet 23.04.2025 20:15:29

A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.0 SP2). The status provided by the syslog clients managed by the affected software can be manipulated by an unauthenticated attacker in the same network of the aff...

5.3

CVE-2021-22925

Exploit
  • EPSS 0.38%
  • Veröffentlicht 05.08.2021 21:15:11
  • Zuletzt bearbeitet 21.11.2024 05:50:55

curl supports the `-t` command line option, known as `CURLOPT_TELNETOPTIONS`in libcurl. This rarely used option is used to send variable=content pairs toTELNET servers.Due to flaw in the option parser for sending `NEW_ENV` variables, libcurlcould be ...

4.3

CVE-2021-22924

Exploit
  • EPSS 0.75%
  • Veröffentlicht 05.08.2021 21:15:11
  • Zuletzt bearbeitet 09.06.2025 15:15:24

libcurl keeps previously used connections in a connection pool for subsequenttransfers to reuse, if one of them matches the setup.Due to errors in the logic, the config matching function did not take 'issuercert' into account and it compared the invo...

9.1

CVE-2021-20093

Exploit
  • EPSS 8.53%
  • Veröffentlicht 16.06.2021 12:15:12
  • Zuletzt bearbeitet 21.11.2024 05:45:54

A buffer over-read vulnerability exists in Wibu-Systems CodeMeter versions < 7.21a. An unauthenticated remote attacker can exploit this issue to disclose heap memory contents or crash the CodeMeter Runtime Server.

8.8

CVE-2020-25240

  • EPSS 0.34%
  • Veröffentlicht 15.03.2021 17:15:20
  • Zuletzt bearbeitet 21.11.2024 05:17:44

A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.0). Unpriviledged users can access services when guessing the url. An attacker could impact availability, integrity and gain information from logs and templates of...