CVE-2014-2732
Siemens SINEMA Server < 12.0 - Path Traversal via HTTP Traffic
Title source: llmDescription
Multiple directory traversal vulnerabilities in the integrated web server in Siemens SINEMA Server before 12 SP1 allow remote attackers to access arbitrary files via HTTP traffic to port (1) 4999 or (2) 80.
References (3)
Core 3
Core References
Vendor Advisory x_refsource_confirm
http://www.siemens.com/innovation/pool/de/forschungsfelder/siemens_security_advisory_ssa-364879.pdf
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/66965
US Government Resource x_refsource_misc
http://ics-cert.us-cert.gov/advisories/ICSA-14-107-01
Scores
EPSS
0.0030
EPSS Percentile
53.0%
Details
CWE
CWE-22
Status
published
Products (1)
siemens/sinema_server
< 12.0
Published
Apr 19, 2014
Tracked Since
Feb 18, 2026