ID CVE-2022-32259
Summary A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.1). The system images for installation or update of the affected application contain unit test scripts with sensitive information. An attacker could gain information about testing architecture and also tamper with test configuration.
References
Vulnerable Configurations
  • cpe:2.3:a:siemens:sinema_remote_connect_server:-:*:*:*:*:*:*:*
    cpe:2.3:a:siemens:sinema_remote_connect_server:-:*:*:*:*:*:*:*
  • cpe:2.3:a:siemens:sinema_remote_connect_server:1.0:sp3_hf1:*:*:*:*:*:*
    cpe:2.3:a:siemens:sinema_remote_connect_server:1.0:sp3_hf1:*:*:*:*:*:*
  • cpe:2.3:a:siemens:sinema_remote_connect_server:1.1:*:*:*:*:*:*:*
    cpe:2.3:a:siemens:sinema_remote_connect_server:1.1:*:*:*:*:*:*:*
  • cpe:2.3:a:siemens:sinema_remote_connect_server:1.2:*:*:*:*:*:*:*
    cpe:2.3:a:siemens:sinema_remote_connect_server:1.2:*:*:*:*:*:*:*
  • cpe:2.3:a:siemens:sinema_remote_connect_server:1.3:*:*:*:*:*:*:*
    cpe:2.3:a:siemens:sinema_remote_connect_server:1.3:*:*:*:*:*:*:*
  • cpe:2.3:a:siemens:sinema_remote_connect_server:2.0:-:*:*:*:*:*:*
    cpe:2.3:a:siemens:sinema_remote_connect_server:2.0:-:*:*:*:*:*:*
  • cpe:2.3:a:siemens:sinema_remote_connect_server:2.0:hf1:*:*:*:*:*:*
    cpe:2.3:a:siemens:sinema_remote_connect_server:2.0:hf1:*:*:*:*:*:*
  • cpe:2.3:a:siemens:sinema_remote_connect_server:3.0:*:*:*:*:*:*:*
    cpe:2.3:a:siemens:sinema_remote_connect_server:3.0:*:*:*:*:*:*:*
CVSS
Base: 6.4 (as of 22-06-2022 - 19:10)
Impact:
Exploitability:
CWE CWE-863
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL PARTIAL NONE
cvss-vector via4 AV:N/AC:L/Au:N/C:P/I:P/A:N
Last major update 22-06-2022 - 19:10
Published 14-06-2022 - 10:15
Last modified 22-06-2022 - 19:10
Back to Top