CNNVD-202512-1524 Information

Dec 09, 2025 cve

CNNVD ID

CNNVD-202512-1524

CVE-2025-40818

CNNVD Published: 2025-12-09

Description (Chinese)

Siemens SINEMA Remote Connect Server是德国西门子（Siemens）公司的一套远程网络管理平台。该平台主要用于远程访问、维护、控制和诊断底层网络。 Siemens SINEMA Remote Connect Server V3.2 SP4之前版本存在安全漏洞，该漏洞源于SSL/TLS密钥保护不足，可能导致中间人攻击。

Description (English)

Siemens SINEMA Remote Connect Server is a remote network management platform for Siemens, Germany. The platform is used mainly for remote access, maintenance, control and diagnostic bottom networks. The previous version of Siemens SINEMA Remote Contact Server V3.2 SP4 had a security loophole, which stemmed from inadequate protection of the SSL/TLS key and could lead to attacks by intermediaries.

Hazard Level

Critical

Vulnerability Type

其他

Affected Vendor

西门子

Published

2025-12-09

Last Modified

2026-02-24

References

https://cert-portal.siemens.com/productcert/html/ssa-626856.html

Patch

https://cert-portal.siemens.com/productcert/html/ssa-626856.html

Share on: