A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP1). Affected products allow to upload certificates. An authenticated attacker could upload a crafted certificates leading to a permanent denial-of-service situation. In order to recover from such an attack, the offending certificate needs to be removed manually.
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

Wed, 27 Aug 2025 21:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


Mon, 09 Sep 2024 15:45:00 +0000

Type Values Removed Values Added
First Time appeared Siemens
Siemens sinema Remote Connect Server
Weaknesses NVD-CWE-noinfo
CPEs cpe:2.3:a:siemens:sinema_remote_connect_server:*:*:*:*:*:*:*:*
cpe:2.3:a:siemens:sinema_remote_connect_server:3.2:-:*:*:*:*:*:*
cpe:2.3:a:siemens:sinema_remote_connect_server:3.2:hf1:*:*:*:*:*:*
Vendors & Products Siemens
Siemens sinema Remote Connect Server

cve-icon MITRE

Status: PUBLISHED

Assigner: siemens

Published:

Updated: 2025-08-27T20:42:56.700Z

Reserved: 2024-07-01T13:05:40.288Z

Link: CVE-2024-39869

cve-icon Vulnrichment

Updated: 2024-08-02T04:33:10.259Z

cve-icon NVD

Status : Modified

Published: 2024-07-09T12:15:18.377

Modified: 2024-11-21T09:28:27.717

Link: CVE-2024-39869

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.