CVE-2021-37193

Summary

A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.0 SP2). An unauthenticated attacker in the same network of the affected system could manipulate certain parameters and set a valid user of the affected software as invalid (or vice-versa).

Affected Software

VendorProductVersion RangeStatus
SiemensSINEMA Remote Connect ServerAll versions < V3.0 SP2affected

Weaknesses

  • CWE-471: CWE-471: Modification of Assumed-Immutable Data (MAID)

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References