2 matches found
CVE-2019-13930
Siemens XHQ Operations Intelligence is affected by CVE-2019-13930 in all versions before 6.0.0.2. The web interface is vulnerable to Cross-Site Request Forgery (CSRF) that can be exploited when a logged-in, authenticated user is tricked into visiting a malicious link, potentially allowing the att...
Siemens XHQ Operations Intelligence
1. EXECUTIVE SUMMARY CVSS v3 8.8 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Siemens Equipment: XHQ Operations Intelligence Vulnerabilities: Cross-site Request Forgery, Improper Neutralization of Script-Related HTML Tags in a Web Page, Improper Input Validation 2. RISK...