A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.0). Unpriviledged users can access services when guessing the url. An attacker could impact availability, integrity and gain information from logs and templates of the service. Source: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25240 Reference (s):
- https://cert-portal.siemens.com/productcert/pdf/ssa-731317.pdf
- URL: https://cert-portal.siemens.com/productcert/pdf/ssa-731317.pdf