First published: Tue Jun 14 2022(Updated: )
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.1). The system images for installation or update of the affected application contain unit test scripts with sensitive information. An attacker could gain information about testing architecture and also tamper with test configuration.
Credit: productcert@siemens.com productcert@siemens.com
Affected Software | Affected Version | How to fix |
---|---|---|
Siemens SINEMA Remote Connect Server | <3.1 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The severity of CVE-2022-32259 is medium.
The affected software of CVE-2022-32259 is Siemens SINEMA Remote Connect Server (versions < V3.1).
The CWE of CVE-2022-32259 is CWE-1244.
An attacker can exploit CVE-2022-32259 by gaining information about testing architecture and tampering with the system images for SINEMA Remote Connect Server.
Yes, Siemens has provided a fix for CVE-2022-32259. Please refer to the Siemens product security advisory for more information.