Unrated severityNVD Advisory· Published Mar 10, 2020· Updated Aug 4, 2024
CVE-2020-7579
CVE-2020-7579
Description
A vulnerability has been identified in Spectrum Power™ 5 (All versions < v5.50 HF02). The web server could allow Cross-Site Scripting (XSS) attacks if unsuspecting users are tricked into accessing a malicious link. User interaction is required for a successful exploitation. If deployed according to recommended system configuration, Siemens consideres the environmental vector as CR:L/IR:M/AR:H/MAV:A (4.1).
Affected products
2- Range: < v5.50 HF02
- Siemens AG/Spectrum Power™ 5v5Range: All versions < v5.50 HF02
Patches
Vulnerability mechanics
References
1- cert-portal.siemens.com/productcert/pdf/ssa-938930.pdfmitrex_refsource_MISC
News mentions
0No linked articles in our index yet.