Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2024-39869


A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP1). Affected products allow to upload certificates. An authenticated attacker could upload a crafted certificates leading to a permanent denial-of-service situation. In order to recover from such an attack, the offending certificate needs to be removed manually.


Published

2024-07-09T12:15:18.377

Last Modified

2024-11-21T09:28:27.717

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 6.5 (MEDIUM)

Weaknesses
  • Type: Secondary
    CWE-754
  • Type: Primary
    NVD-CWE-noinfo

Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Application siemens sinema_remote_connect_server < 3.2 Yes
Application siemens sinema_remote_connect_server 3.2 Yes
Application siemens sinema_remote_connect_server 3.2 Yes

References