CVE-2024-42344

Name of the Vulnerable Software and Affected Versions SINEMA Remote Connect Client versions prior to V3.2 SP2

Description A vulnerability has been identified where the affected application inserts sensitive information into a log file. This log file is readable by all legitimate users of the underlying system, potentially allowing an authenticated attacker to compromise the confidentiality of other users' configuration data.

Recommendations For versions prior to V3.2 SP2, update to version V3.2 SP2 or later to resolve the issue. As a temporary workaround, consider restricting access to the log file to minimize the risk of exploitation.