SSA-880233 (Last Update: 2020-01-14): Incorrect Session Validation Vulnerability in SINEMA Server

Published

2020-01-14 00:00:00 UTC

Summary

The latest update for SINEMA Server fixes a vulnerability that could allow authenticated users with a low-privileged account to perform firmware updates (as well as other administrative operations) on connected devices. Therefore, Siemens recommends to update the affected products.

Source

https://cert-portal.siemens.com/productcert/pdf/ssa-880233.pdf