CVE-2022-32258
First published: Tue Jun 14 2022(Updated: )
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.1). The affected application contains an older feature that allows to import device configurations via a specific endpoint. An attacker could use this vulnerability for information disclosure.
Credit: productcert@siemens.com productcert@siemens.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Siemens SINEMA Remote Connect Server | <3.1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this SINEMA Remote Connect Server vulnerability?
The vulnerability ID for this SINEMA Remote Connect Server vulnerability is CVE-2022-32258.
What is the affected version of SINEMA Remote Connect Server?
All versions prior to V3.1 are affected by this vulnerability.
What is the severity of CVE-2022-32258?
The severity of CVE-2022-32258 is high with a CVSS score of 7.5.
What is the impact of this vulnerability?
This vulnerability can be used by an attacker to gain unauthorized access to sensitive information.
Is there a fix available for this vulnerability?
Yes, a fix is available. Users should update to version V3.1 or later of SINEMA Remote Connect Server.
- collector/nvd-index
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/remedy
- agent/author
- agent/last-modified-date
- agent/weakness
- agent/tags
- agent/references
- agent/first-publish-date
- agent/event
- agent/description
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- vendor/siemens
- canonical/siemens sinema remote connect server