CVE-2020-25239

Name of the Vulnerable Software and Affected Versions: SINEMA Remote Connect Server versions prior to V3.0

Description: A vulnerability has been identified in the webserver, allowing unauthorized actions via special URLs for unprivileged users. An attacker with unprivileged user rights could change the settings of the UMC authorization server to add a rogue server.

Recommendations: For versions prior to V3.0, update to version V3.0 or later to resolve the issue. As a temporary workaround, consider restricting access to special URLs for unprivileged users to minimize the risk of exploitation.