CVE-2021-31338

Summary

A vulnerability has been identified in SINEMA Remote Connect Client (All versions < V3.0 SP1). Affected devices allow to modify configuration settings over an unauthenticated channel. This could allow a local attacker to escalate privileges and execute own code on the device.

Affected Software

VendorProductVersion RangeStatus
SiemensSINEMA Remote Connect ClientAll versions < V3.0 SP1affected

Weaknesses

  • CWE-15: CWE-15: External Control of System or Configuration Setting

ADP Enrichment

CVE Program Container

Additional References

References