Siemens Sinema Remote Connect Server vulnerabilities

CVE-2025-40819 [MEDIUM] CWE-863 CVE-2025-40819: A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP4). Affec A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP4). Affected applications do not properly validate license restrictions against the database, allowing direct modification of the system_ticketinfo table to bypass license limitations without proper enforcement checks. This could allow with database access to

CVE-2025-40818 [LOW] CWE-732 CVE-2025-40818: A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP4). Affec A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP4). Affected applications contain private SSL/TLS keys on the server that are not properly protected allowing any user with server access to read these keys. This could allow an authenticated attacker to impersonate the server potentially enabling man-in-the-midd

CVE-2024-42345 [MEDIUM] CWE-384 CVE-2024-42345: A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP2). The a A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP2). The affected application does not properly handle user session establishment and invalidation. This could allow a remote attacker to circumvent the additional multi factor authentication for user session establishment.

CVE-2024-39872 [CRITICAL] CWE-378 CVE-2024-39872: A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP1). The a A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP1). The affected application does not properly assign rights to temporary files created during its update process. This could allow an authenticated attacker with the 'Manage firmware updates' role to escalate their privileges on the underlying OS level.

CVE-2024-39873 [HIGH] CWE-307 CVE-2024-39873: A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP1). The a A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP1). The affected application does not properly implement brute force protection against user credentials in its web API. This could allow an attacker to learn user credentials that are vulnerable to brute force attacks.

CVE-2024-39874 [HIGH] CWE-307 CVE-2024-39874: A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP1). The a A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP1). The affected application does not properly implement brute force protection against user credentials in its Client Communication component. This could allow an attacker to learn user credentials that are vulnerable to brute force attacks.

CVE-2024-39570 [HIGH] CWE-77 CVE-2024-39570: A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 HF1). Affec A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 HF1). Affected applications are vulnerable to command injection due to missing server side input sanitation when loading VxLAN configurations. This could allow an authenticated attacker to execute arbitrary code with root privileges.

CVE-2024-39867 [HIGH] CWE-425 CVE-2024-39867: A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP1). Affec A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP1). Affected devices do not properly validate the authentication when performing certain actions in the web interface allowing an unauthenticated attacker to access and edit device configuration information of devices for which they have no privileges.

CVE-2024-39868 [HIGH] CWE-425 CVE-2024-39868: A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP1). Affec A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP1). Affected devices do not properly validate the authentication when performing certain actions in the web interface allowing an unauthenticated attacker to access and edit VxLAN configuration information of networks for which they have no privileges.

CVE-2024-39870 [HIGH] CWE-602 CVE-2024-39870: A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP1). The a A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP1). The affected applications can be configured to allow users to manage own users. A local authenticated user with this privilege could use this modify users outside of their own scope as well as to escalate privileges.

CVE-2024-39865 [HIGH] CWE-434 CVE-2024-39865: A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP1). The a A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP1). The affected application allows users to upload encrypted backup files. As part of this backup, files can be restored without correctly checking the path of the restored file. This could allow an attacker with access to the backup encryption key to upload ma

CVE-2024-39571 [HIGH] CWE-77 CVE-2024-39571: A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 HF1). Affec A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 HF1). Affected applications are vulnerable to command injection due to missing server side input sanitation when loading SNMP configurations. This could allow an attacker with the right to modify the SNMP configuration to execute arbitrary code with root privileges

CVE-2024-39869 [HIGH] CWE-754 CVE-2024-39869: A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP1). Affec A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP1). Affected products allow to upload certificates. An authenticated attacker could upload a crafted certificates leading to a permanent denial-of-service situation. In order to recover from such an attack, the offending certificate needs to be removed manually.

CVE-2024-39866 [HIGH] CWE-267 CVE-2024-39866: A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP1). The a A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP1). The affected application allows users to upload encrypted backup files. This could allow an attacker with access to the backup encryption key and with the right to upload backup files to create a user with administrative privileges.

CVE-2024-39876 [MEDIUM] CWE-770 CVE-2024-39876: A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP1). Affec A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP1). Affected applications do not properly handle log rotation. This could allow an unauthenticated remote attacker to cause a denial of service condition through resource exhaustion on the device.

CVE-2024-39875 [MEDIUM] CWE-732 CVE-2024-39875: A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP1). The a A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP1). The affected application allows authenticated, low privilege users with the 'Manage own remote connections' permission to retrieve details about other users and group memberships.

CVE-2024-39871 [MEDIUM] CWE-863 CVE-2024-39871: A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP1). Affec A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP1). Affected applications do not properly separate the rights to edit device settings and to edit settings for communication relations. This could allow an authenticated attacker with the permission to manage devices to gain access to participant groups that t

CVE-2022-32257 [CRITICAL] CWE-284 CVE-2022-32257: A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2). The affec A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2). The affected application consists of a web service that lacks proper access control for some of the endpoints. This could lead to unauthorized access to resources and potentially lead to code execution.

CVE-2022-32251 [HIGH] CWE-306 CVE-2022-32251: A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.1). There is A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.1). There is a missing authentication verification for a resource used to change the roles and permissions of a user. This could allow an attacker to change the permissions of any user and gain the privileges of an administrative user.

CVE-2022-32260 [MEDIUM] CWE-286 CVE-2022-32260: A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP1). The a A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP1). The affected application creates temporary user credentials for UMC (User Management Component) users. An attacker could use these temporary credentials for authentication bypass in certain scenarios.