Jaime Blasco

**Name of the Vulnerable Software and Affected Versions** SAP NetWeaver versions prior to 7.0 SP15 **Description** The issue concerns the default configuration of SAP NetWeaver, where the "Always Use Secure HTML Editor" parameter is not enabled, allowing remote attackers to conduct cross-site scripting (XSS) attacks by entering feedback for a file. **Recommendations** For SAP NetWeaver versions prior to 7.0 SP15, enable the "Always Use Secure HTML Editor" parameter to prevent cross-site scripting attacks.

**Name of the Vulnerable Software and Affected Versions** Siemens SpeedStream 2624 (affected versions not specified) **Description** The issue allows remote attackers to cause a denial of service, resulting in the device hanging, by sending a crafted packet to the web administrative interface. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Siemens Speedstream Wireless Router version 2624 **Description** The issue allows local users to bypass authentication and access protected files by utilizing the Universal Plug and Play (UPnP/1.0) component. **Recommendations** For Siemens Speedstream Wireless Router version 2624, consider disabling the UPnP/1.0 component as a temporary workaround to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** D-Link DSA-3100 (affected versions not specified) **Description** A cross-site scripting (XSS) issue exists, allowing remote attackers to inject arbitrary HTML or web script via an encoded `uname` parameter in the login error.shtml file. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Mobotix IP Network Cameras M1 version 1.9.4.7 Mobotix IP Network Cameras M10 versions 2.0.5.2 through 2.2.3.18 Mobotix IP Network Cameras M22 versions prior to 3.0.3.31 **Description** The issue allows remote attackers to inject arbitrary web script or HTML via URL-encoded values in several parameters. Specifically, the vulnerabilities exist in (1) the query string to "help/help", (2) the `get image info abspath` parameter to "control/eventplayer", and (3) the `source ip` parameter to "events.tar". **Recommendations** For M1 version 1.9.4.7, update to a version later than 1.9.4.7. For M10 versions 2.0.5.2 through 2.2.3.18, update to version 2.2.3.18 or later. For M22 versions prior to 3.0.3.31, update to version 3.0.3.31 or later. As a temporary workaround, consider restricting access to the "help/help" page, the "control/eventplayer" endpoint, and the "events.tar" file until a patch is available. Avoid using URL-encoded values in the `get image info abspath` and `source ip` parameters until the issue is resolved.