Lucene search

SiemensCVELIST:CVE-2021-37183

HistorySep 14, 2021 - 10:47 a.m.

CVE-2021-37183

2021-09-1410:47:47

CWE-284

siemens

www.cve.org

vulnerability

sinema remote connect server

unauthenticated

denial-of-service

AI Score

6.6

Confidence

High

EPSS

0.001

Percentile

26.7%

JSON

A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.0 SP2). The affected software allows sending send-to-sleep notifications to the managed devices. An unauthenticated attacker in the same network of the affected system can abuse these notifications to cause a Denial-of-Service condition in the managed devices.

CNA Affected

[
  {
    "product": "SINEMA Remote Connect Server",
    "vendor": "Siemens",
    "versions": [
      {
        "status": "affected",
        "version": "All versions < V3.0 SP2"
      }
    ]
  }
]

References

cert-portal.siemens.com/productcert/pdf/ssa-334944.pdf