How severe is CVE-2022-32252?

CVE-2022-32252 has a CVSS v3 score of 6.5 (MEDIUM).

CVE-2022-32252

Name: sinema_remote_connect_server
Author: siemens

6.5MEDIUM

A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.1). The application does not perform the integrity check of the update packages. Without validation, an admin use

公開日: 6/14/2022更新日: 11/21/2024

説明

A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.1). The application does not perform the integrity check of the update packages. Without validation, an admin user might be tricked to install a malicious package, granting root privileges to an attacker.

AI分析AIによる分析

影響を受ける製品

siemenssinema_remote_connect_server

参照

https://cert-portal.siemens.com/productcert/html/ssa-484086.html
https://cert-portal.siemens.com/productcert/pdf/ssa-484086.pdf
PatchVendor Advisory
https://cert-portal.siemens.com/productcert/html/ssa-484086.html
https://cert-portal.siemens.com/productcert/pdf/ssa-484086.pdf
PatchVendor Advisory