A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP1). The affected application does not properly implement brute force protection against user credentials in its Client Communication component. This could allow an attacker to learn user credentials that are vulnerable to brute force attacks.
                
            References
                    | Link | Resource | 
|---|---|
| https://cert-portal.siemens.com/productcert/html/ssa-381581.html | Patch Vendor Advisory | 
| https://cert-portal.siemens.com/productcert/html/ssa-381581.html | Patch Vendor Advisory | 
Configurations
                    Configuration 1 (hide)
| 
 | 
History
                    No history.
Information
                Published : 2024-07-09 12:15
Updated : 2024-11-21 09:28
NVD link : CVE-2024-39874
Mitre link : CVE-2024-39874
CVE.ORG link : CVE-2024-39874
JSON object : View
Products Affected
                siemens
- sinema_remote_connect_server
CWE
                
                    
                        
                        CWE-307
                        
            Improper Restriction of Excessive Authentication Attempts
