CVE-2024-39868

Name of the Vulnerable Software and Affected Versions: SINEMA Remote Connect Server versions prior to V3.2 SP1

Description: A vulnerability has been identified in the SINEMA Remote Connect Server, related to errors in security mechanisms. This issue allows an unauthenticated attacker to access and edit VxLAN configuration information of networks without proper privileges. The vulnerability is associated with improper validation of authentication when performing certain actions in the web interface.

Recommendations: For versions prior to V3.2 SP1, update to version V3.2 SP1 or later to resolve the issue. As a temporary workaround, consider restricting access to the web interface to minimize the risk of exploitation. Avoid using the web interface for sensitive operations until the issue is resolved.