Siemens · Teamcenter · CVE-2018-11450
**Name of the Vulnerable Software and Affected Versions**
Siemens PLM Software TEAMCENTER version 9.1.2.5
**Description**
A reflected Cross-Site-Scripting (XSS) issue has been identified. This allows an attacker to insert html/javascript code and alter the login portal page if a user visits a crafted URL.
**Recommendations**
For version 9.1.2.5, update to version 9.1.3 or newer to resolve the issue.