First published: Tue Sep 14 2021(Updated: )
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.0 SP2). The affected software has an information disclosure vulnerability that could allow an attacker to retrieve a list of network devices a known user can manage.
Credit: productcert@siemens.com
Affected Software | Affected Version | How to fix |
---|---|---|
Siemens SINEMA Remote Connect Server | <3.0 | |
Siemens SINEMA Remote Connect Server | =3.0 | |
Siemens SINEMA Remote Connect Server | =3.0-sp1 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2021-37192 is a vulnerability found in SINEMA Remote Connect Server (All versions < V3.0 SP2) that allows an attacker to retrieve a list of network devices a known user can manage.
CVE-2021-37192 has a severity rating of medium, with a CVSS score of 4.3.
The affected software is Siemens SINEMA Remote Connect Server, with versions up to and exclusive to V3.0 SP2.
An attacker can exploit CVE-2021-37192 to retrieve a list of network devices that a known user can manage.
Yes, Siemens has released an update to address the vulnerability in SINEMA Remote Connect Server.