First published: Tue Sep 14 2021(Updated: )
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.0 SP2). An unauthenticated attacker in the same network of the affected system could brute force the usernames from the affected software.
Credit: productcert@siemens.com
Affected Software | Affected Version | How to fix |
---|---|---|
Siemens SINEMA Remote Connect Server | <3.0 | |
Siemens SINEMA Remote Connect Server | =3.0 | |
Siemens SINEMA Remote Connect Server | =3.0-sp1 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID is CVE-2021-37191.
The severity of CVE-2021-37191 is medium with a CVSS score of 4.3.
The affected software is Siemens SINEMA Remote Connect Server with versions < V3.0 SP2.
An unauthenticated attacker in the same network could brute force the usernames of the affected software.
Yes, the fix is available in SINEMA Remote Connect Server version V3.0 SP2 or later.