CVE-2019-6570

Name of the Vulnerable Software and Affected Versions SINEMA Remote Connect Server versions prior to V2.0

Description The issue is related to insufficient checking of user permissions, allowing an attacker to access URLs that require special authorization. To exploit this, an attacker must have access to a low-privileged account. This could enable a remote attacker to access system resources by bypassing the authorization mechanism.

Recommendations For versions prior to V2.0, update to version V2.0 or later to resolve the issue. As a temporary workaround, consider restricting access to sensitive URLs and reinforcing account privileges to minimize the risk of exploitation.