Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2011-4510
HistoryOct 03, 2022 - 4:15 p.m.

CVE-2011-4510

2022-10-0316:15:15
CWE-79
[email protected]
web.nvd.nist.gov
21
cve-2011-4510
cross-site scripting
xss vulnerability
siemens
wincc flexible
tia portal
nvd
security advisory

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

5.7 Medium

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

59.4%

JSON

Cross-site scripting (XSS) vulnerability in the HMI web server in Siemens WinCC flexible 2004, 2005, 2007, and 2008 before SP3; WinCC V11 (aka TIA portal) before SP2 Update 1; the TP, OP, MP, Comfort Panels, and Mobile Panels SIMATIC HMI panels; WinCC V11 Runtime Advanced; and WinCC flexible Runtime allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2011-4511.

Affected configurations

NVD
Node
siemenswincc_flexibleMatch2004
OR
siemenswincc_flexibleMatch2005
OR
siemenswincc_flexibleMatch2007
OR
siemenswincc_flexibleMatch2008
OR
siemenswincc_flexibleMatch2008sp1
OR
siemenswincc_flexibleMatch2008sp2
Node
siemenswinccRangev11sp2
OR
siemenswinccMatchv11
OR
siemenswinccMatchv11sp1
Node
siemenssimatic_hmi_panelsMatchcomfort_panels
OR
siemenssimatic_hmi_panelsMatchmobile_panels
OR
siemenssimatic_hmi_panelsMatchmp
OR
siemenssimatic_hmi_panelsMatchop
OR
siemenssimatic_hmi_panelsMatchtp
Node
siemenswincc_runtime_advancedMatchv11
Node
siemenswincc_flexible_runtime

Related

prion 2
nvd 2
cve 1
cvelist 2
nessus 3
ics 1
kaspersky 1
prion
prion
Cross site scripting
2012-02-03 20:55:00
Cross site scripting
2012-02-03 20:55:00
nvd
nvd
CVE-2011-4511
2012-02-03 20:55:01
CVE-2011-4510
2012-02-03 20:55:01
cve
cve
CVE-2011-4511
2022-10-03 16:15:15
cvelist
cvelist
CVE-2011-4510
2022-10-03 16:15:15
CVE-2011-4511
2022-10-03 16:15:15
nessus
nessus
Siemens WinCC and SIMATIC HMI Panels < 11.0.2.1 XSS
2019-05-08 00:00:00
Siemens WinCC and SIMATIC HMI Panels < 11.0.2.1 XSS
2019-05-08 00:00:00
Siemens WinCC and SIMATIC HMI Panels < 11.0.2.1 Multiple Vulnerabilities
2019-05-08 00:00:00
ics
ics
Siemens SIMATIC WinCC Vulnerabilities (UPDATE A)
2018-09-06 12:00:00
kaspersky
kaspersky
KLA10394 Multiple vulnerabilities in Siemens
2012-01-24 00:00:00

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

5.7 Medium

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

59.4%

JSON
Related for CVE-2011-4510
prion2nvd2cve1cvelist2nessus3ics1kaspersky1