Home/Product/siemens sinema remote connect server
Product

siemens sinema remote connect server

71 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
CVE-2025-40819
< 3.2
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP4). Affected applications do not proper
4.3MEDIUM
 CVE-2025-40818
< 3.2
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP4). Affected applications contain priva
3.3LOW
 CVE-2024-42345
< 3.2
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP2). The affected application does not p
4.3MEDIUM
 CVE-2024-39876
< 3.2
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP1). Affected applications do not proper
4.0MEDIUM
 CVE-2024-39875
< 3.2
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP1). The affected application allows aut
4.3MEDIUM
 CVE-2024-39874
< 3.2
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP1). The affected application does not p
7.5HIGH
 CVE-2024-39873
< 3.2
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP1). The affected application does not p
7.5HIGH
 CVE-2024-39872
< 3.2
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP1). The affected application does not p
9.6CRITICAL
 CVE-2024-39871
< 3.2
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP1). Affected applications do not proper
6.3MEDIUM
 CVE-2024-39870
< 3.2
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP1). The affected applications can be co
6.3MEDIUM
 CVE-2024-39869
< 3.2
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP1). Affected products allow to upload c
6.5MEDIUM
 CVE-2024-39868
< 3.2
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP1). Affected devices do not properly va
7.6HIGH
 CVE-2024-39867
< 3.2
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP1). Affected devices do not properly va
7.6HIGH
 CVE-2024-39866
< 3.2
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP1). The affected application allows use
8.8HIGH
 CVE-2024-39865
< 3.2
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP1). The affected application allows use
8.8HIGH
 CVE-2024-39571
< 3.2
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 HF1). Affected applications are vulnerabl
8.8HIGH
 CVE-2024-39570
< 3.2
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 HF1). Affected applications are vulnerabl
8.8HIGH
 CVE-2022-32257
< 3.2
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2). The affected application consists of a
9.8CRITICAL
 CVE-2022-32262
< 3.1
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.1). The affected application contains a fil
8.8HIGH
 CVE-2022-32261
< 3.1
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.1). The affected application contains a mis
5.3MEDIUM
 CVE-2022-32260
< 3.1
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP1). The affected application creates te
6.5MEDIUM
 CVE-2022-32259
< 3.1
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.1). The system images for installation or u
6.5MEDIUM
 CVE-2022-32258
< 3.1
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.1). The affected application contains an ol
5.3MEDIUM
 CVE-2022-32256
< 3.1
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.1). The affected application consists of a
4.3MEDIUM
 CVE-2022-32255
< 3.1
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.1). The affected application consists of a
5.3MEDIUM
 CVE-2022-32254
< 3.1
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.1). A customized HTTP POST request could fo
4.3MEDIUM
 CVE-2022-32253
< 3.1
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.1). Due to improper input validation, the O
4.9MEDIUM
 CVE-2022-32252
< 3.1
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.1). The application does not perform the in
6.5MEDIUM
 CVE-2022-32251
< 3.1
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.1). There is a missing authentication verif
8.8HIGH
 CVE-2022-29034
< 3.1
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.1). An error message pop up window in the w
6.1MEDIUM
 CVE-2022-27221
< 3.1
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.1). An attacker in machine-in-the-middle co
5.9MEDIUM
 CVE-2022-27220
< 3.0
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.0 SP2). Affected application is missing gen
4.3MEDIUM
 CVE-2022-27219
< 3.0
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.0 SP2). Affected application is missing gen
4.3MEDIUM
 CVE-2022-25315
< 3.1
In Expat (aka libexpat) before 2.4.5, there is an integer overflow in storeRawNames.
9.8CRITICAL
 CVE-2022-25314
< 3.1
In Expat (aka libexpat) before 2.4.5, there is an integer overflow in copyString.
7.5HIGH
 CVE-2022-25313
< 3.1
In Expat (aka libexpat) before 2.4.5, an attacker can trigger stack exhaustion in build_model via a large nesting depth in the DTD
6.5MEDIUM
 CVE-2022-25236
< 3.1
xmlparse.c in Expat (aka libexpat) before 2.4.5 allows attackers to insert namespace-separator characters into namespace URIs.
9.8CRITICAL
 CVE-2022-25235
< 3.1
xmltok_impl.c in Expat (aka libexpat) before 2.4.5 lacks certain validation of encoding, such as checks for whether a UTF-8 charac
9.8CRITICAL
 CVE-2022-23102
<= 2.0
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V2.0). Affected products contain an open redir
6.1MEDIUM
 CVE-2022-23990
< 3.1
Expat (aka libexpat) before 2.4.4 has an integer overflow in the doProlog function.
7.5HIGH
 CVE-2022-23852
< 3.1
Expat (aka libexpat) before 2.4.4 has a signed integer overflow in XML_GetBuffer, for configurations with a nonzero XML_CONTEXT_BY
9.8CRITICAL
 CVE-2022-22827
< 3.1
storeAtts in xmlparse.c in Expat (aka libexpat) before 2.4.3 has an integer overflow.
8.8HIGH
 CVE-2022-22826
< 3.1
nextScaffoldPart in xmlparse.c in Expat (aka libexpat) before 2.4.3 has an integer overflow.
8.8HIGH
 CVE-2022-22825
< 3.1
lookup in xmlparse.c in Expat (aka libexpat) before 2.4.3 has an integer overflow.
8.8HIGH
 CVE-2022-22824
< 3.1
defineAttribute in xmlparse.c in Expat (aka libexpat) before 2.4.3 has an integer overflow.
9.8CRITICAL
 CVE-2022-22823
< 3.1
build_model in xmlparse.c in Expat (aka libexpat) before 2.4.3 has an integer overflow.
9.8CRITICAL
 CVE-2022-22822
< 3.1
addBinding in xmlparse.c in Expat (aka libexpat) before 2.4.3 has an integer overflow.
9.8CRITICAL
 CVE-2021-46143
< 3.1
In doProlog in xmlparse.c in Expat (aka libexpat) before 2.4.3, an integer overflow exists for m_groupSize.
8.1HIGH
 CVE-2021-45960
< 3.1
In Expat (aka libexpat) before 2.4.3, a left shift by 29 (or more) places in the storeAtts function in xmlparse.c can lead to real
8.8HIGH
 CVE-2021-41991
all versions
The in-memory certificate cache in strongSwan before 5.9.4 has a remote integer overflow upon receiving many requests with differe
7.5HIGH
 CVE-2021-40438
< 3.1
A crafted request uri-path can cause mod_proxy to forward the request to an origin server choosen by the remote user. This issue a
9.0CRITICAL
 CVE-2021-34798
< 3.1
Malformed requests may cause the server to dereference a NULL pointer. This issue affects Apache HTTP Server 2.4.48 and earlier.
7.5HIGH
 CVE-2021-37193
< 3.0
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.0 SP2). An unauthenticated attacker in the
4.3MEDIUM
 CVE-2021-37192
< 3.0
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.0 SP2). The affected software has an inform
4.3MEDIUM
 CVE-2021-37191
< 3.0
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.0 SP2). An unauthenticated attacker in the
4.3MEDIUM
 CVE-2021-37190
< 3.0
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.0 SP2). The affected software has an inform
4.3MEDIUM
 CVE-2021-37183
< 3.0
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.0 SP2). The affected software allows sendin
6.5MEDIUM
 CVE-2021-37177
< 3.0
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.0 SP2). The status provided by the syslog c
6.5MEDIUM
 CVE-2021-22925
< 3.1
curl supports the -t command line option, known as CURLOPT_TELNETOPTIONSin libcurl. This rarely used option is used to send va
5.3MEDIUM
 CVE-2021-22924
< 3.1
libcurl keeps previously used connections in a connection pool for subsequenttransfers to reuse, if one of them matches the setup.
3.7LOW
 CVE-2021-20093
< 3.0
A buffer over-read vulnerability exists in Wibu-Systems CodeMeter versions < 7.21a. An unauthenticated remote attacker can exploit
9.1CRITICAL
 CVE-2020-25240
< 3.0
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.0). Unpriviledged users can access services
8.8HIGH
 CVE-2020-25239
< 3.0
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.0). The webserver could allow unauthorized
8.8HIGH
 CVE-2020-7595
< 3.0
xmlStringLenDecodeEntities in parser.c in libxml2 2.9.10 has an infinite loop in a certain end-of-file situation.
7.5HIGH
 CVE-2019-19956
< 3.0
xmlParseBalancedChunkMemoryRecover in parser.c in libxml2 before 2.9.10 has a memory leak related to newDoc-oldNs.
7.5HIGH
 CVE-2019-13922
<= 2.0
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V2.0 SP1). An attacker with administrative pri
2.7LOW
 CVE-2019-13920
<= 2.0
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V2.0 SP1). Some parts of the web application a
4.3MEDIUM
 CVE-2019-13919
<= 2.0
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V2.0 SP1). Some pages that should only be acce
4.3MEDIUM
 CVE-2019-13918
< 2.0
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V2.0 SP1). The web interface has no means to p
9.8CRITICAL
 CVE-2019-6570
< 2.0
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V2.0). Due to insufficient checking of user pe
8.8HIGH
 CVE-2016-6204
<= 1.1
Cross-site scripting (XSS) vulnerability in the integrated web server in Siemens SINEMA Remote Connect Server before 1.2 allows re
6.1MEDIUM
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh  ·  Open-source threat intelligence platform  ·  100+ authoritative sources  ·  Every fact traces to its origin