VYPR
Unrated severityNVD Advisory· Published Jun 8, 2012· Updated Jun 16, 2026

CVE-2012-2595

CVE-2012-2595

Description

Multiple cross-site scripting (XSS) vulnerabilities in unspecified web applications in Siemens WinCC 7.0 SP3 before Update 2 allow remote attackers to inject arbitrary web script or HTML via vectors involving special characters in parameters.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

3
  • cpe:2.3:a:siemens:wincc:7.0:sp3:*:*:*:*:*:*+ 2 more
    • cpe:2.3:a:siemens:wincc:7.0:sp3:*:*:*:*:*:*
    • cpe:2.3:a:siemens:wincc:7.0:sp3:update_1:*:*:*:*:*
    • (no CPE)range: 7.0 SP3 before Update 2

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.