Lucene search
China National Vulnerability DatabaseCNVD-2022-02747HistoryJan 12, 2022 - 12:00 a.m.
Siemens COMOS Web Component Cross-Site Scripting Vulnerability
2022-01-1200:00:00
China National Vulnerability Database
www.cnvd.org.cn
4
0.001 Low
EPSS
Percentile
31.5%
COMOS is a unified data platform for collaborative plant design, operations, and management that supports the collection, processing, storage, and distribution of information throughout the plant lifecycle.A cross-site scripting vulnerability exists in the Siemens COMOS Web component that could be exploited by an attacker to inject malicious code that is executed when loading attachments.
| CPE | Name | Operator | Version |
|---|---|---|---|
| siemens comos | lt | 10.4.1 |
Related
cvelist
cvelist
CVE-2021-37195
2022-01-11 11:27:13
cve
cve
CVE-2021-37195
2022-01-11 12:15:09
nvd
nvd
CVE-2021-37195
2022-01-11 12:15:09
prion
prion
Code injection
2022-01-11 12:15:00
ics
ics
Siemens COMOS Web (Update B)
2022-04-14 12:00:00