CVE-2014-2732

CWE-22Path Traversal3 documents3 sources
Severity
5.0MEDIUM
EPSS
0.3%
top 47.09%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Siemens Sinema Server
Timeline
PublishedApr 19
Latest updateMay 17

Description

Multiple directory traversal vulnerabilities in the integrated web server in Siemens SINEMA Server before 12 SP1 allow remote attackers to access arbitrary files via HTTP traffic to port (1) 4999 or (2) 80.

CVSS vector

AV:N/AC:L/C:P/I:N/A:NExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

🔴Vulnerability Details

2
GHSA
GHSA-3h59-938p-m4pj: Multiple directory traversal vulnerabilities in the integrated web server in Siemens SINEMA Server before 12 SP1 allow remote attackers to access arbi2022-05-17
CVEList
CVE-2014-2732: Multiple directory traversal vulnerabilities in the integrated web server in Siemens SINEMA Server before 12 SP1 allow remote attackers to access arbi2014-04-19
CVE-2014-2732 (MEDIUM CVSS 5) | Multiple directory traversal vulner | cvebase.io