Vulnerability Details CVE-2022-32262
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.1). The affected application contains a file upload server that is vulnerable to command injection. An attacker could use this to achieve arbitrary code execution.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.019
EPSS Ranking 82.0%
CVSS Severity
CVSS v3 Score 8.8
CVSS v2 Score 7.5
References
Products affected by CVE-2022-32262
-
cpe:2.3:a:siemens:sinema_remote_connect_server:-
-
cpe:2.3:a:siemens:sinema_remote_connect_server:1.0
-
cpe:2.3:a:siemens:sinema_remote_connect_server:1.1
-
cpe:2.3:a:siemens:sinema_remote_connect_server:1.2
-
cpe:2.3:a:siemens:sinema_remote_connect_server:1.3
-
cpe:2.3:a:siemens:sinema_remote_connect_server:2.0
-
cpe:2.3:a:siemens:sinema_remote_connect_server:3.0