Количество 3
Количество 3
CVE-2024-39872
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP1). The affected application does not properly assign rights to temporary files created during its update process. This could allow an authenticated attacker with the 'Manage firmware updates' role to escalate their privileges on the underlying OS level.
GHSA-p74h-fjjv-jrm8
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP1). The affected application does not properly assign rights to temporary files created during its update process. This could allow an authenticated attacker with the 'Manage firmware updates' role to escalate their privileges on the underlying OS level.
BDU:2024-10351
Уязвимость компонента Firmware Update Handler сервера Siemens SINEMA Remote Connect, позволяющая нарушителю повысить свои привилегии
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2024-39872 A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP1). The affected application does not properly assign rights to temporary files created during its update process. This could allow an authenticated attacker with the 'Manage firmware updates' role to escalate their privileges on the underlying OS level. | CVSS3: 9.6 | 1% Низкий | больше 1 года назад |
| GHSA-p74h-fjjv-jrm8 A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP1). The affected application does not properly assign rights to temporary files created during its update process. This could allow an authenticated attacker with the 'Manage firmware updates' role to escalate their privileges on the underlying OS level. | CVSS3: 9.6 | 1% Низкий | больше 1 года назад |
 | BDU:2024-10351 Уязвимость компонента Firmware Update Handler сервера Siemens SINEMA Remote Connect, позволяющая нарушителю повысить свои привилегии | CVSS3: 9.9 | 1% Низкий | больше 1 года назад |
Уязвимостей на страницу