← Volver a CVEs
CVE-2022-32259
MEDIUM6.5
Descripcion
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.1). The system images for installation or update of the affected application contain unit test scripts with sensitive information. An attacker could gain information about testing architecture and also tamper with test configuration.
Detalles CVE
Puntuacion CVSS v3.16.5
SeveridadMEDIUM
Vector CVSSCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
Vector de ataqueNETWORK
ComplejidadLOW
Privilegios requeridosNONE
Interaccion usuarioNONE
Publicado6/14/2022
Ultima modificacion11/21/2024
Fuentenvd
Avistamientos honeypot0
Productos afectados
siemens:sinema_remote_connect_server
Debilidades (CWE)
CWE-1244
Referencias
https://cert-portal.siemens.com/productcert/html/ssa-484086.html(productcert@siemens.com)
https://cert-portal.siemens.com/productcert/pdf/ssa-484086.pdf(productcert@siemens.com)
https://cert-portal.siemens.com/productcert/html/ssa-484086.html(af854a3a-2127-422b-91ae-364da2661108)
https://cert-portal.siemens.com/productcert/pdf/ssa-484086.pdf(af854a3a-2127-422b-91ae-364da2661108)
Correlaciones IOC
Sin correlaciones registradas
This product uses data from the NVD API but is not endorsed or certified by the NVD.