Cross-site request forgery vulnerability in multiple Siemens products

SIMATIC Drive Controllers are designed for the automation of production machines and combine the functionality of SIMATIC S7-1500 CPUs and SINAMICS S120 Drive Controllers.SIMATIC PC Station is a software component for managing SIMATIC software products and interfaces on PCs. SIMATIC S7-1200 CPUs and SIMATIC S7-1500 CPUs have been designed for discrete and continuous control in industrial environments such as manufacturing, food and beverage, and the global chemical industry. SIMATIC S7-300 controllers and SIMATIC S7-400 controllers have been designed for discrete and continuous control in industrial environments, such as manufacturing, food and beverage, and the global chemical industry. 1200, S7-1500 and several other PLC derivatives. Includes full network access to analog plc, even in virtual environments.SIMATIC WinAC RTX is a SIMATIC software controller for pc-based automation solutions.SIMATIC WinCC Runtime Advanced is a visual runtime platform for operator control and monitoring of machines and plants. SINUMERIK ONE is a digital native CNC with integrated SIMATIC S7-1500 CPU for automation. SIPLUS extreme products are designed for reliable operation under extreme conditions and are based on SIMATIC, LOGO!, SITOP, SINAMICS, SIMOTION, SCALANCE or other devices, SIPLUS devices use the same firmware as the products on which they are based. A cross-site request forgery vulnerability exists in several Siemens products, which could be exploited by an authenticated, remote attacker to track the activities of other users.