CVE-2024-22045
CVSS 3.1 Score 6.5 of 10 (medium)
Details
Published Mar 12, 2024
Updated: Mar 25, 2024
CWE ID 538
Summary
CVE-2024-22045 is a newly identified vulnerability affecting SINEMA Remote Connect Client versions prior to V3.1 SP1. The issue arises when the product stores sensitive information in accessible files or directories, granting unintended access to actors who should not have privileges to the data. This vulnerability extends to the web interface of the product, allowing potentially malicious actors to gain unauthorized access to the sensitive information.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Products
- Siemens SINEMA Remote Connect Client
Affected Vendors
- Siemens AG