SINEMA Remote Connect Server Vulnerability: Password Hash Disclosure

SINEMA Remote Connect Server Vulnerability: Password Hash Disclosure

CVE-2019-13922 · LOW Severity

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N

A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V2.0 SP1). An attacker with administrative privileges can obtain the hash of a connected device's password. The security vulnerability could be exploited by an attacker with network access to the SINEMA Remote Connect Server and administrative privileges. At the time of advisory publication no public exploitation of this security vulnerability was known.

Learn more about our Cis Benchmark Audit For Server Software.