CVE-2020-25239

UNKNOWN

Published 2021-03-15T17:03:30

Actions:

Expert Analysis

Professional remediation guidance

Get tailored security recommendations from our analyst team for CVE-2020-25239. We'll provide specific mitigation strategies based on your environment and risk profile.

No CVSS data available

Description

A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.0). The webserver could allow unauthorized actions via special urls for unpriviledged users. The settings of the UMC authorization server could be changed to add a rogue server by an attacker authenticating with unprivilege user rights.

Available Exploits

No exploits available for this CVE.

Related News

No news articles found for this CVE.

Affected Products

Siemens

SINEMA Remote Connect Server

Affected Versions:

All versions < V3.0

GitHub Security Advisories

Community-driven vulnerability intelligence from GitHub

⚠ Unreviewed HIGH

GHSA-fp4f-m8g2-6548

Advisory Details

CVSS Scoring

CVSS Score

7.5

References

ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2020-25239

WEB https://cert-portal.siemens.com/productcert/pdf/ssa-731317.pdf

Advisory provided by GitHub Security Advisory Database. Published: May 24, 2022, Modified: May 24, 2022

References

https://cert-portal.siemens.com/productcert/pdf/ssa-731317.pdf

Published: 2021-03-15T17:03:30

Last Modified: 2024-08-04T15:33:05.190Z

Copied to clipboard!

CVE-2020-25239

Expert Analysis

Description

Available Exploits

Related News

Affected Products

SINEMA Remote Connect Server

Affected Versions:

GitHub Security Advisories

Advisory Details

CVSS Scoring

CVSS Score

References

References

Request Analysis

What to expect

Request Received!