CVE-2013-0667

Currently unrated

Key Information:

Vendor
Siemens
Status
Wincc Tia Portal
Vendor
CVE Published:
21 March 2013

Summary

Cross-site scripting (XSS) vulnerability in the HMI web application in Siemens WinCC (TIA Portal) 11 allows remote attackers to inject arbitrary web script or HTML via a crafted URL.

References

http://ics-cert.us-cert.gov/pdf/ICSA-13-079-03.pdf
x_refsource_MISC
http://www.siemens.com/corporate-technology/pool/de/forsc...
x_refsource_CONFIRM

Timeline

  • Vulnerability Reserved

  • Vulnerability published

.