CWE-15: External Control of System or Configuration Setting
Affected devices allow to modify configuration settings over an unauthenticated channel. This could allow a local attacker to escalate privileges and execute own code on the device.

Risk Information

  • CVE ID
  • CVE-2021-31338
  • Vendor
  • Siemens
  • Product
  • SINEMA Remote Connect Client
  • CVSS v3
  • 7.8