4 matches found
CVE-2020-7579
A vulnerability has been identified in Spectrum Power™ 5 All versions v5.50 HF02. The web server could allow Cross-Site Scripting XSS attacks if unsuspecting users are tricked into accessing a malicious link. User interaction is required for a successful exploitation. If deployed according to...
Cross site scripting
A vulnerability has been identified in Spectrum Power™ 5 All versions v5.50 HF02. The web server could allow Cross-Site Scripting XSS attacks if unsuspecting users are tricked into accessing a malicious link. User interaction is required for a successful exploitation. If deployed according to...
CVE-2020-7579
CVE-2020-7579 affects Siemens Spectrum Power 5 web server, with all versions prior to 5.50 HF02 vulnerable to basic Cross‑Site Scripting (XSS). The flaw arises in the web interface where script-related HTML tags are not properly neutralized, allowing an attacker to lure a user to a malicious link...
Siemens Spectrum Power 5
1. EXECUTIVE SUMMARY CVSS v3 6.1 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Siemens Equipment: Spectrum Power 5 Vulnerability: Improper Neutralization of Script-Related HTML Tags in a Web Page Basic XSS 2. RISK EVALUATION Successful exploitation of this vulnerability could...