CVE-2019-6570

Summary

A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V2.0). Due to insufficient checking of user permissions, an attacker may access URLs that require special authorization. An attacker must have access to a low privileged account in order to exploit the vulnerability.

Affected Software

VendorProductVersion RangeStatus
SiemensSINEMA Remote Connect ServerAll versions < V2.0affected

Weaknesses

  • CWE-280: CWE-280: Improper Handling of Insufficient Permissions or Privileges

ADP Enrichment

CVE Program Container

Additional References

References