Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
siemens sinema server - vulnerabilities and exploits
(subscribe to this query)
5.3
CVSSv3
CVE-2019-10941
A vulnerability has been identified in SINEMA Server (All versions < V14 SP3). Missing authentication for functionality that requires administrative user identity could allow an malicious user to obtain encoded system configuration backup files. This is only possible through n...
Siemens Sinema Server 14.0
Siemens Sinema Server
9.9
CVSSv3
CVE-2019-10940
A vulnerability has been identified in SINEMA Server (All versions < V14.0 SP2 Update 1). Incorrect session validation could allow an attacker with a valid session, with low privileges, to perform firmware updates and other administrative operations on connected devices. The s...
Siemens Sinema Server 14.0
Siemens Sinema Server
9.8
CVSSv3
CVE-2019-13918
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V2.0 SP1). The web interface has no means to prevent password guessing attacks. The vulnerability could be exploited by an attacker with network access to the vulnerable software, requiring no ...
Siemens Sinema Remote Connect Server
Siemens Sinema Remote Connect Server 2.0
4.3
CVSSv3
CVE-2019-13920
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V2.0 SP1). Some parts of the web application are not protected against Cross Site Request Forgery (CSRF) attacks. The security vulnerability could be exploited by an attacker that is able to tr...
Siemens Sinema Remote Connect Server 2.0
Siemens Sinema Remote Connect Server
2.7
CVSSv3
CVE-2019-13922
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V2.0 SP1). An attacker with administrative privileges can obtain the hash of a connected device's password. The security vulnerability could be exploited by an attacker with network access...
Siemens Sinema Remote Connect Server 2.0
Siemens Sinema Remote Connect Server
4.3
CVSSv3
CVE-2021-37192
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.0 SP2). The affected software has an information disclosure vulnerability that could allow an malicious user to retrieve a list of network devices a known user can manage.
Siemens Sinema Remote Connect Server
Siemens Sinema Remote Connect Server 3.0
4.3
CVSSv3
CVE-2022-27219
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.0 SP2). Affected application is missing general HTTP security headers in the web server configured on port 443. This could aid attackers by making the servers more prone to clickjacking, cha...
Siemens Sinema Remote Connect Server
Siemens Sinema Remote Connect Server 3.0
4.3
CVSSv3
CVE-2022-27220
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.0 SP2). Affected application is missing general HTTP security headers in the web server configured on port 6220. This could aid attackers by making the servers more prone to clickjacking, ch...
Siemens Sinema Remote Connect Server
Siemens Sinema Remote Connect Server 3.0
6.5
CVSSv3
CVE-2021-37177
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.0 SP2). The status provided by the syslog clients managed by the affected software can be manipulated by an unauthenticated attacker in the same network of the affected system.
Siemens Sinema Remote Connect Server
Siemens Sinema Remote Connect Server 3.0
6.5
CVSSv3
CVE-2021-37183
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.0 SP2). The affected software allows sending send-to-sleep notifications to the managed devices. An unauthenticated attacker in the same network of the affected system can abuse these notifi...
Siemens Sinema Remote Connect Server
Siemens Sinema Remote Connect Server 3.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »