4 matches found
Siemens SCALANCE S Improper Neutralization of Input During Web Page Generation (CVE-2018-16555)
A vulnerability has been identified in SCALANCE S602 All versions V4.0.1.1, SCALANCE S612 All versions V4.0.1.1, SCALANCE S623 All versions V4.0.1.1, SCALANCE S627-2M All versions V4.0.1.1. The integrated web server could allow Cross-Site Scripting XSS attacks if unsuspecting users are tricked in...
CVE-2018-16555
CVE-2018-16555 affects Siemens SCALANCE S602, S612, S623 and S627-2M (all versions before 4.0.1.1). The vulnerability is an improper neutralization of input during web page generation, enabling cross-site scripting (XSS) if a user, who must be logged into the web interface, is tricked into clicki...
CVE-2018-16555
A vulnerability has been identified in SCALANCE S602 All versions V4.0.1.1, SCALANCE S612 All versions V4.0.1.1, SCALANCE S623 All versions V4.0.1.1, SCALANCE S627-2M All versions V4.0.1.1. The integrated web server could allow Cross-Site Scripting XSS attacks if unsuspecting users are tricked in...
Siemens Patches Firewall Flaw That Put Operations at Risk
Siemens AG on Tuesday issued a slew of fixes addressing eight vulnerabilities spanning its industrial product lines. The most serious of the patched flaws include a cross-site scripting vulnerability in Siemens’ SCALANCE firewall product. The flaw could allow an attacker to gain unauthorized acce...