ГлавнаяУязвимости → CVE-2022-32257
9.8критическая

CVE-2022-32257

Описание

A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2). The affected application consists of a web service that lacks proper access control for some of the endpoints. This could lead to unauthorized access to resources and potentially lead to code execution.

Затрагиваемое ПО
Siemens Sinema remote connect server
CVSS
Балл9.8 — критическая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Источники
https://cert-portal.siemens.com/productcert/html/ssa-576771.htmlhttps://cert-portal.siemens.com/productcert/html/ssa-576771.html