Artem Chaykin

**Name of the Vulnerable Software and Affected Versions** Firefox for iOS versions prior to 115 **Description** The issue is related to insufficient input validation, which can lead to a denial-of-service (DoS) attack by a remote attacker. Specifically, the session restore helper crashes when no parameter is sent to the message handler. **Recommendations** For Firefox for iOS versions prior to 115, update to version 115 or later to resolve the issue. As a temporary workaround, consider restricting the use of the session restore helper until a patch is available.

**Name of the Vulnerable Software and Affected Versions** Siemens WinCC (TIA Portal) version 11 **Description** A cross-site scripting (XSS) issue exists in the HMI web application, allowing remote attackers to inject arbitrary web script or HTML via a crafted URL. This could potentially lead to unauthorized actions on the web application. **Recommendations** For version 11, update to a newer version that contains a fix for this issue, or as a temporary workaround, consider restricting access to the HMI web application to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Siemens WinCC (TIA Portal) version 11 **Description** The issue concerns a CRLF injection vulnerability in the HMI web application. This vulnerability allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via a crafted URL. **Recommendations** For Siemens WinCC (TIA Portal) version 11, consider restricting access to the HMI web application until a patch is available. As a temporary workaround, avoid using crafted URLs that could exploit the CRLF injection vulnerability.

**Name of the Vulnerable Software and Affected Versions** Siemens WinCC (TIA Portal) version 11 **Description** The issue allows remote authenticated users to cause a denial of service, resulting in a daemon crash, by sending a crafted HTTP request to the HMI web application. **Recommendations** For version 11, apply the necessary patch or update to fix the issue, or consider temporarily restricting access to the HMI web application to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Siemens WinCC (TIA Portal) version 11 **Description** The issue concerns multiple cross-site scripting (XSS) vulnerabilities in the HMI web application. These vulnerabilities allow remote attackers to inject arbitrary web script or HTML via a crafted URL. **Recommendations** For Siemens WinCC (TIA Portal) version 11, update to a version that includes a fix for the XSS vulnerabilities in the HMI web application.

**Name of the Vulnerable Software and Affected Versions** Google Chrome versions prior to 18.0.1025308 **Description** A cross-application scripting issue allows remote attackers to inject arbitrary web script via unspecified vectors. This can be demonstrated by "Universal XSS (UXSS)" attacks against the current tab. **Recommendations** For versions prior to 18.0.1025308, update to version 18.0.1025308 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Google Chrome versions prior to 18.0.1025308 on Android **Description** The issue allows remote attackers to obtain sensitive information via unspecified vectors, such as obtaining credential data. **Recommendations** For versions prior to 18.0.1025308, update to version 18.0.1025308 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Siemens WinCC version 7.0 SP3 before Update 2 **Description** The issue concerns multiple cross-site scripting (XSS) vulnerabilities in unspecified web applications. These vulnerabilities allow remote attackers to inject arbitrary web script or HTML via vectors involving special characters in parameters. **Recommendations** For Siemens WinCC version 7.0 SP3 before Update 2, apply Update 2 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Siemens WinCC version 7.0 SP3 before Update 2 **Description** The issue allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in a GET request. This can be achieved by including a malicious URL in the request. **Recommendations** For Siemens WinCC version 7.0 SP3 before Update 2, apply Update 2 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Siemens WinCC versions 7.0 SP3 through Update 2 **Description** The issue is related to a buffer overflow in the DiagAgent web server, which can be exploited by remote attackers to cause a denial of service, resulting in an agent outage. This can be achieved by sending crafted input to the vulnerable server. **Recommendations** For versions 7.0 SP3 through Update 2, update to a version later than Update 2 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Siemens WinCC version 7.0 SP3 before Update 2 **Description** The issue allows remote authenticated users to read arbitrary files via a crafted parameter in a URL, due to multiple directory traversal vulnerabilities. **Recommendations** For Siemens WinCC version 7.0 SP3 before Update 2, apply Update 2 to resolve the issue. As a temporary workaround, consider restricting access to sensitive files and directories to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Siemens WinCC version 7.0 SP3 before Update 2 **Description** The issue concerns the XPath functionality in web applications, which does not properly handle special characters in parameters. This allows remote authenticated users to read or modify settings via a crafted URL, related to an "XML injection" attack. **Recommendations** For Siemens WinCC version 7.0 SP3 before Update 2, update to a version that includes Update 2 to resolve the issue. As a temporary workaround, consider restricting access to the XPath functionality to minimize the risk of exploitation. Avoid using special characters in parameters for the affected web applications until the issue is resolved.