CVE-2021-37183

Name of the Vulnerable Software and Affected Versions SINEMA Remote Connect Server versions prior to V3.0 SP2

Description A vulnerability has been identified that allows an unauthenticated attacker in the same network to abuse send-to-sleep notifications and cause a Denial-of-Service condition in the managed devices. The affected software allows sending these notifications to the managed devices.

Recommendations For versions prior to V3.0 SP2, update to V3.0 SP2 or later to resolve the issue. As a temporary workaround, consider restricting access to the send-to-sleep notification feature to minimize the risk of exploitation.