CVE-2019-10933

🗓️ 11 Jul 2019 21:17:47Reported by siemensType

Vulnerability in Spectrum Power web servers allowing XSS attack

Reporter	Title	Published	Views	Family All 7
CNVD	Siemens Spectrum Power Cross-Site Scripting Vulnerability	10 Jul 201900:00	–	cnvd
Cvelist	CVE-2019-10933	11 Jul 201921:17	–	cvelist
EUVD	EUVD-2019-2647	7 Oct 202500:30	–	euvd
ICS	ICSA-19-190-04 Siemens Spectrum Power (Update A)	9 Jul 201900:00	–	ics
NVD	CVE-2019-10933	11 Jul 201922:15	–	nvd
Prion	Cross site scripting	11 Jul 201922:15	–	prion
RedhatCVE	CVE-2019-10933	22 May 202510:24	–	redhatcve

NVD

Node

siemens spectrum_power_3Range≤3.11

siemens spectrum_power_4Range≤4.75

siemens spectrum_power_5Range≤5.50

siemens spectrum_power_7Range≤2.20

[
  {
    "product": "Spectrum Power 3 (Corporate User Interface)",
    "vendor": "Siemens AG",
    "versions": [
      {
        "status": "affected",
        "version": "All versions <= v3.11"
      }
    ]
  },
  {
    "product": "Spectrum Power 4 (Corporate User Interface)",
    "vendor": "Siemens AG",
    "versions": [
      {
        "status": "affected",
        "version": "Version v4.75"
      }
    ]
  },
  {
    "product": "Spectrum Power 5 (Corporate User Interface)",
    "vendor": "Siemens AG",
    "versions": [
      {
        "status": "affected",
        "version": "All versions < v5.50"
      }
    ]
  },
  {
    "product": "Spectrum Power 7 (Corporate User Interface)",
    "vendor": "Siemens AG",
    "versions": [
      {
        "status": "affected",
        "version": "All versions <= v2.20"
      }
    ]
  }
]

Source	Link
cert-portal	www.cert-portal.siemens.com/productcert/pdf/ssa-747162.pdf

21 Nov 2024 04:20Current

5.8Medium risk

Vulners AI Score5.8

CVSS 24.3

CVSS 36.1

EPSS0.00266