CVE-2020-25240
First published: Mon Mar 15 2021(Updated: )
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.0). Unpriviledged users can access services when guessing the url. An attacker could impact availability, integrity and gain information from logs and templates of the service.
Credit: productcert@siemens.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Siemens SINEMA Remote Connect Server | <3.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the vulnerability identified in SINEMA Remote Connect Server?
The vulnerability identified in SINEMA Remote Connect Server is CVE-2020-25240.
What is the severity of CVE-2020-25240?
The severity of CVE-2020-25240 is high with a severity value of 8.8.
How can unprivileged users exploit CVE-2020-25240?
Unprivileged users can exploit CVE-2020-25240 by guessing the URL and gaining access to services.
What are the potential impacts of CVE-2020-25240?
CVE-2020-25240 could impact availability, integrity, and allow an attacker to gain information from logs and templates of the service.
How can I fix the vulnerability in SINEMA Remote Connect Server?
To fix the vulnerability in SINEMA Remote Connect Server, upgrade to version 3.0 or higher.
- collector/nvd-index
- agent/references
- agent/severity
- agent/author
- agent/weakness
- agent/tags
- agent/event
- agent/description
- agent/type
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- vendor/siemens
- canonical/siemens sinema remote connect server