CVE-2015-1048

Name of the Vulnerable Software and Affected Versions Siemens SIMATIC S7-1200 CPU devices with firmware prior to 4.1

Description The issue allows a remote attacker to redirect users to arbitrary web sites, potentially leading to phishing attacks. This is achieved through an open redirect vulnerability in the integrated web server.

Recommendations For Siemens SIMATIC S7-1200 CPU devices with firmware prior to 4.1, update the firmware to version 4.1 or later to resolve the issue. As a temporary workaround, consider restricting access to the integrated web server to minimize the risk of exploitation.