Sinema server
This hub aggregates every CVE we track for Sinema server, a product in the ics ot iot space. Use it to gauge the current risk picture and drill into individual advisories.
17
CVEs tracked
4
Critical
6
High
1
In CISA KEV
Severity distribution
MEDIUM7HIGH6CRITICAL4
Monthly trend
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
2024-082026-07
Latest CVEs
The 15 most recently published vulnerabilities affecting Sinema server.
- CVE-2023-35796A vulnerability has been identified in SINEMA Server V14 (All versions). The affected application improperly sanitizes certain SNMP configuration data retrieved from monitored devices. An attacker ...8.3
- CVE-2022-25311A vulnerability has been identified in SINEC NMS (All versions >= V1.0.3 < V2.0), SINEC NMS (All versions < V1.0.3), SINEMA Server V14 (All versions). The affected software do not properly check pr...7.3
- CVE-2021-40438mod_proxy SSRFKEV9.0
- CVE-2021-39275ap_escape_quotes buffer overflow9.8
- CVE-2021-34798NULL pointer dereference in httpd core7.5
- CVE-2019-10941A vulnerability has been identified in SINEMA Server (All versions < V14 SP3). Missing authentication for functionality that requires administrative user identity could allow an attacker to obtain ...5.3
- CVE-2021-3449NULL pointer deref in signature_algorithms processing5.9
- CVE-2020-25237A vulnerability has been identified in SINEC NMS (All versions < V1.0 SP1 Update 1), SINEMA Server (All versions < V14.0 SP2 Update 2). When uploading files to an affected system using a zip contai...8.1
- CVE-2020-7580A vulnerability has been identified in SIMATIC Automation Tool (All versions < V4 SP2), SIMATIC NET PC Software V14 (All versions < V14 SP1 Update 14), SIMATIC NET PC Software V15 (All versions), S...6.7
- CVE-2019-10940A vulnerability has been identified in SINEMA Server (All versions < V14.0 SP2 Update 1). Incorrect session validation could allow an attacker with a valid session, with low privileges, to perform ...9.9
- CVE-2019-6575A vulnerability has been identified in SIMATIC CP 443-1 OPC UA (All versions), SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) (All versions < V2.7), SIMATIC HMI Comfort Out...7.5
- CVE-2017-6865A vulnerability has been identified in Primary Setup Tool (PST) (All versions < V4.2 HF1), SIMATIC Automation Tool (All versions < V3.0), SIMATIC NET PC-Software (All versions < V14 SP1), SIMATIC P...6.5
- CVE-2016-7165A vulnerability has been identified in Primary Setup Tool (PST) (All versions < V4.2 HF1), SIMATIC IT Production Suite (All versions < V7.0 SP1 HFX 2), SIMATIC NET PC-Software (All versions < V14),...6.4
- CVE-2016-6486Siemens SINEMA Server uses weak permissions for the application folder, which allows local users to gain privileges via unspecified vectors.7.8
- CVE-2014-2733Siemens SINEMA Server before 12 SP1 allows remote attackers to cause a denial of service (web-interface outage) via crafted HTTP requests to port (1) 4999 or (2) 80.5.0
Product normalization is registry-driven with AI assist and human review. How it works