The login endpoint /FormLogin in affected web services does not apply proper origin checking. This could allow authenticated remote attackers to track the activities of other users via a login cross-site request forgery attack.
oryginał ENCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:NSiemens 6ag1151 8ab01 7ab0
HWSiemenswszystkie wersjeSiemens 6ag1151 8ab01 7ab0 Firmware
OSSiemens< 3.2.19Siemens 6ag1151 8fb01 2ab0
HWSiemenswszystkie wersjeSiemens 6ag1151 8fb01 2ab0 Firmware
OSSiemens< 3.2.19Siemens 6ag1314 6eh04 7ab0
HWSiemenswszystkie wersjeSiemens 6ag1314 6eh04 7ab0 Firmware
OSSiemens< 3.3.19Siemens 6ag1315 2eh14 7ab0
HWSiemenswszystkie wersjeSiemens 6ag1315 2eh14 7ab0 Firmware
OSSiemens< 3.2.19Siemens 6ag1315 2fj14 2ab0
HWSiemenswszystkie wersjeSiemens 6ag1315 2fj14 2ab0 Firmware
OSSiemens< 3.2.19Siemens 6ag1317 2ek14 7ab0
HWSiemenswszystkie wersjeSiemens 6ag1317 2ek14 7ab0 Firmware
OSSiemens< 3.2.19Siemens 6ag1317 2fk14 2ab0
HWSiemenswszystkie wersjeSiemens 6ag1317 2fk14 2ab0 Firmware
OSSiemens< 3.2.19Siemens 6es7151 8ab01 0ab0
HWSiemenswszystkie wersjeSiemens 6es7151 8ab01 0ab0 Firmware
OSSiemens< 3.2.19Siemens 6es7151 8fb01 0ab0
HWSiemenswszystkie wersjeSiemens 6es7151 8fb01 0ab0 Firmware
OSSiemens< 3.2.19Siemens 6es7154 8ab01 0ab0
HWSiemenswszystkie wersjeSiemens 6es7154 8ab01 0ab0 Firmware
OSSiemens< 3.2.19Siemens 6es7154 8fb01 0ab0
HWSiemenswszystkie wersjeSiemens 6es7154 8fb01 0ab0 Firmware
OSSiemens< 3.2.19Siemens 6es7154 8fx00 0ab0
HWSiemenswszystkie wersjeSiemens 6es7154 8fx00 0ab0 Firmware
OSSiemens< 3.2.19Siemens 6es7314 6eh04 0ab0
HWSiemenswszystkie wersjeSiemens 6es7314 6eh04 0ab0 Firmware
OSSiemens< 3.3.19Siemens 6es7315 2eh14 0ab0
HWSiemenswszystkie wersjeSiemens 6es7315 2eh14 0ab0 Firmware
OSSiemens< 3.2.19Siemens 6es7315 2fj14 0ab0
HWSiemenswszystkie wersjeSiemens 6es7315 2fj14 0ab0 Firmware
OSSiemens< 3.2.19
Powiązane podatności
A vulnerability has been identified in SIMATIC Drive Controller family (All versions < V2.9.2), SIMATIC ET 200...
A vulnerability has been identified in SIMATIC Drive Controller family (All versions < V2.9.2), SIMATIC ET 200...
A vulnerability has been identified in SIMATIC HMI Comfort Panels 4" - 22" (All versions < V15.1 Update 1), SI...
Affected devices improperly handle specially crafted packets sent to port 102/tcp. This could allow an attack...
The OPC UA implementations (ANSI C and C++) in affected products contain an integer overflow vulnerability tha...