Security Advisory

CVE-2024-39569

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-07-09 12:05:14

Last updated 2025-08-27 20:42:55

Assigner siemens

State PUBLISHED

Description

A vulnerability has been identified in SINEMA Remote Connect Client (All versions < V3.2 HF1). The system service of affected applications is vulnerable to command injection due to missing server side input sanitation when loading VPN configurations. This could allow an administrative remote attacker running a corresponding SINEMA Remote Connect Server to execute arbitrary code with system privileges on the client system.

← Browse all CVEs View on cve.org ↗