What is CVE-2014-2732?

CVE-2014-2732 is a vulnerability in Siemens Sinema_server, classified under Path Traversal. Published 2014-04-19.

Is CVE-2014-2732 known to be exploited?

3 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Path Traversal in Siemens Sinema_server

CVE-2014-2732

Multiple directory traversal vulnerabilities in the integrated web server in Siemens SINEMA Server before 12 SP1 allow remote attackers to access arbitrary files via HTTP traffic to port (1) 4999 or (2) 80.

Vulnerability class: Path Traversal (Directory Traversal)

EPSS: 0.036 (88.0th percentile) — read the EPSS interpretation.

Affected products

Siemens Sinema_server
N/a — versions n/a

Weakness classification (CWE)

CWE-22 — Path Traversal

Public proof-of-concept exploits

References

cve@mitre.org (x_refsource_CONFIRM, Vendor Advisory)
cve@mitre.org (vdb-entry, x_refsource_BID)
cve@mitre.org (US Government Resource, x_refsource_MISC)

Frequently asked questions

What is CVE-2014-2732?: CVE-2014-2732 is a vulnerability in Siemens Sinema_server, classified under Path Traversal. Published 2014-04-19.
Is CVE-2014-2732 known to be exploited?: 3 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.