First published: Tue Sep 10 2024(Updated: )
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP2). The affected application does not properly handle user session establishment and invalidation. This could allow a remote attacker to circumvent the additional multi factor authentication for user session establishment.
Credit: productcert@siemens.com
Affected Software | Affected Version | How to fix |
---|---|---|
Siemens SINEMA Remote Connect Server | <3.2 | |
Siemens SINEMA Remote Connect Server | =3.2 | |
Siemens SINEMA Remote Connect Server | =3.2-hf1 | |
Siemens SINEMA Remote Connect Server | =3.2-sp1 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.