Details of VAR-202407-0136

ID

VAR-202407-0136

CVE

CVE-2024-39865

TITLE

Siemens SINEMA Remote Connect Server file upload vulnerability

Trust: 0.6

sources: CNVD: CNVD-2024-31233

DESCRIPTION

A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP1). The affected application allows users to upload encrypted backup files. As part of this backup, files can be restored without correctly checking the path of the restored file. This could allow an attacker with access to the backup encryption key to upload malicious files, that could potentially lead to remote code execution. The platform is mainly used for remote access, maintenance, control and diagnosis of underlying networks

Trust: 1.44

sources: NVD: CVE-2024-39865 // CNVD: CNVD-2024-31233

IOT TAXONOMY

category:

['ICS']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2024-31233

AFFECTED PRODUCTS

vendor:

siemens

model:

sinema remote connect server sp1

scope:

version:

v3.2

Trust: 0.6

sources: CNVD: CNVD-2024-31233

CVSS

SEVERITY

CVSSV2

CVSSV3

productcert@siemens.com:	CVE-2024-39865
value:	HIGH
Trust: 1.0
CNVD:	CNVD-2024-31233
value:	HIGH
Trust: 0.6

CNVD:	CNVD-2024-31233
severity:	HIGH
baseScore:	9.0
vectorString:	AV:N/AC:L/AU:S/C:C/I:C/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	SINGLE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	8.0
impactScore:	10.0
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6

productcert@siemens.com:	CVE-2024-39865
baseSeverity:	HIGH
baseScore:	8.8
vectorString:	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	LOW
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	HIGH
exploitabilityScore:	2.8
impactScore:	5.9
version:	3.1
Trust: 1.0

sources: CNVD: CNVD-2024-31233 // NVD: CVE-2024-39865

PROBLEMTYPE DATA

problemtype:

CWE-434

Trust: 1.0

sources: NVD: CVE-2024-39865

PATCH

title:

Patch for Siemens SINEMA Remote Connect Server file upload vulnerability

url:

https://www.cnvd.org.cn/patchInfo/show/567746

Trust: 0.6

sources: CNVD: CNVD-2024-31233

EXTERNAL IDS

db:	SIEMENS	id:	SSA-381581	Trust: 1.6
db:	NVD	id:	CVE-2024-39865	Trust: 1.6
db:	CNVD	id:	CNVD-2024-31233	Trust: 0.6

sources: CNVD: CNVD-2024-31233 // NVD: CVE-2024-39865

REFERENCES

url:

https://cert-portal.siemens.com/productcert/html/ssa-381581.html

Trust: 1.6

sources: CNVD: CNVD-2024-31233 // NVD: CVE-2024-39865

SOURCES

db:	CNVD	id:	CNVD-2024-31233
db:	NVD	id:	CVE-2024-39865

LAST UPDATE DATE

2024-08-14T12:18:23.363000+00:00

SOURCES UPDATE DATE

db:	CNVD	id:	CNVD-2024-31233	date:	2024-07-10T00:00:00
db:	NVD	id:	CVE-2024-39865	date:	2024-07-09T18:19:14.047

SOURCES RELEASE DATE

db:	CNVD	id:	CNVD-2024-31233	date:	2024-07-10T00:00:00
db:	NVD	id:	CVE-2024-39865	date:	2024-07-09T12:15:17.443