Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP1). Affected products allow to upload certificates. An authenticated attacker could upload a crafted certificates leading to a permanent denial-of-service situation. In order to recover from such an attack, the offending certificate needs to be removed manually.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Vulnerability Type
对因果或异常条件的不恰当检查
Vulnerability Title
Siemens SINEMA Remote Connect 代码问题漏洞
Vulnerability Description
Siemens SINEMA Remote Connect是德国西门子(Siemens)公司的一套远程管理平台。该平台支持以高效安全的方式远程访问分布在全球各地的机器设备以及确保对控制中心、服务工程师与已安装设备之间的VPN通道进行安全管理等。 Siemens SINEMA Remote Connect Server V3.2 SP1 版本之前存在代码问题漏洞,该漏洞源于受影响的产品允许上传证书。经过身份验证的攻击者可以上传伪造的证书,从而导致永久性的拒绝服务情况。为了从此类攻击中恢复,需要手动删除有问题
CVSS Information
N/A
Vulnerability Type
N/A