5.2 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
40.9%
Cross-site scripting (XSS) vulnerability in the HMI web application in Siemens WinCC (TIA Portal) 11 allows remote authenticated users to inject arbitrary web script or HTML via unspecified data.
ics-cert.us-cert.gov/pdf/ICSA-13-079-03.pdf
www.siemens.com/corporate-technology/pool/de/forschungsfelder/siemens_security_advisory_ssa-212483.pdf