CVE-2019-10941

Name of the Vulnerable Software and Affected Versions SINEMA Server versions prior to V14 SP3

Description A vulnerability has been identified that could allow an attacker to obtain encoded system configuration backup files due to missing authentication for functionality requiring administrative user identity. This can only be achieved through network access to the affected system, and successful exploitation does not require system privileges.

Recommendations For versions prior to V14 SP3, update to V14 SP3 or later to resolve the issue. As a temporary workaround, consider restricting network access to the affected system to minimize the risk of exploitation.