2 matches found
CVE-2017-2683
A non-privileged user of the Siemens web application RUGGEDCOM NMS V1.2 on port 8080/TCP and 8081/TCP could perform a persistent Cross-Site Scripting XSS attack, potentially resulting in obtaining administrative permissions...
CVE-2017-2683
Siemens RUGGEDCOM NMS (all versions prior to 2.1.0) on ports 8080/8081 contains a persistent XSS vulnerability (CVE-2017-2683) allowing a non-privileged user to potentially obtain administrative permissions. The issue is described in ICS-CERT advisory ICSA-17-059-01 and Siemens security advisory ...