← Back to home
ICSA-16-208-03  ·  Published 2025-06-09  ·  View on CISA ICS-CERT ↗

Siemens SINEMA Remote Connect Server Cross-site Scripting Vulnerability

CVSS 4.7 MEDIUM

CVEs (1)

Remediations

  • Siemens provides software update V1.2 for SINEMA Remote Connect Server which fixes the vulnerability and recommends users update to the new version. The software update for SINEMA Remote Connect Server can be obtained at: (https://support.industry.siemens.com/cs/ww/en/view/109737963)
  • As a general security measure, Siemens strongly recommends to configure the environment according to its operational guidelines available at: (https://www.siemens.com/cert/operational-guidelines-industrial-security)
  • For more information on this vulnerability and more detailed mitigation instructions, please see Siemens Security Advisory SSA-119132 at the following location: (http://www.siemens.com/cert/en/cert-security-advisories.htm)

Affected Vendors

Siemens

Affected Products (1)

Siemens · SINEMA Remote Connect Server <1.2

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more