Vulnerability Description
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V2.0 SP1). An attacker with administrative privileges can obtain the hash of a connected device's password. The security vulnerability could be exploited by an attacker with network access to the SINEMA Remote Connect Server and administrative privileges. At the time of advisory publication no public exploitation of this security vulnerability was known.
CVSS Score
LOW
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Siemens | Sinema Remote Connect Server | <= 2.0 |
Related Weaknesses (CWE)
References
- https://cert-portal.siemens.com/productcert/pdf/ssa-884497.pdfPatchVendor Advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-884497.pdfPatchVendor Advisory
FAQ
What is CVE-2019-13922?
CVE-2019-13922 is a vulnerability with a CVSS score of 2.7 (LOW). A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V2.0 SP1). An attacker with administrative privileges can obtain the hash of a connected device's password. The secu...
How severe is CVE-2019-13922?
CVE-2019-13922 has been rated LOW with a CVSS base score of 2.7/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2019-13922?
Check the references section above for vendor advisories and patch information. Affected products include: Siemens Sinema Remote Connect Server.