CVE-2014-2731

3 documents3 sources

Severity

9.3CRITICAL

EPSS

2.4%

top 15.08%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Siemens Sinema Server

Timeline

PublishedApr 19

Latest updateMay 17

Description

Multiple unspecified vulnerabilities in the integrated web server in Siemens SINEMA Server before 12 SP1 allow remote attackers to execute arbitrary code via HTTP traffic to port (1) 4999 or (2) 80.

CVSS vector

AV:N/AC:M/C:C/I:C/A:CExploitability: 8.6 | Impact: 10.0

Affected Packages1 packages

▶NVDsiemens/sinema_server12.0

🔴Vulnerability Details

GHSA

GHSA-rqpx-j23g-4832: Multiple unspecified vulnerabilities in the integrated web server in Siemens SINEMA Server before 12 SP1 allow remote attackers to execute arbitrary c↗2022-05-17

▶

CVEList

CVE-2014-2731: Multiple unspecified vulnerabilities in the integrated web server in Siemens SINEMA Server before 12 SP1 allow remote attackers to execute arbitrary c↗2014-04-19

▶