CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-39568

A vulnerability has been identified in SINEMA Remote Connect Client (All versions < V3.2 HF1). The system service of affected applications is vulnerable to command injection due to missing server side input sanitation when loading proxy configurations. This could allow an authenticated local attacker to execute arbitrary code with system privileges.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 58.8%

CVSS Severity

CVSS v3 Score 7.8

References

Products affected by CVE-2024-39568

Siemens » Sinema Remote Connect Client » Version: N/A

cpe:2.3:a:siemens:sinema_remote_connect_client:-
Siemens » Sinema Remote Connect Client » Version: 1.0

cpe:2.3:a:siemens:sinema_remote_connect_client:1.0
Siemens » Sinema Remote Connect Client » Version: 1.3

cpe:2.3:a:siemens:sinema_remote_connect_client:1.3
Siemens » Sinema Remote Connect Client » Version: 2.0

cpe:2.3:a:siemens:sinema_remote_connect_client:2.0
Siemens » Sinema Remote Connect Client » Version: 3.1

cpe:2.3:a:siemens:sinema_remote_connect_client:3.1
Siemens » Sinema Remote Connect Client » Version: 3.2

cpe:2.3:a:siemens:sinema_remote_connect_client:3.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-39568

Products

Pricing

Contact Us