A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP1). Affected products allow to upload certificates. An authenticated attacker could upload a crafted certificates leading to a permanent denial-of-service situation. In order to recover from such an attack, the offending certificate needs to be removed manually.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Sinema_remote_connect_server | Siemens | * | 3.2 (excluding) |
Sinema_remote_connect_server | Siemens | 3.2 (including) | 3.2 (including) |
Sinema_remote_connect_server | Siemens | 3.2-hf1 (including) | 3.2-hf1 (including) |