PT-2020-11213 · Siemens · Scalance S623+3
Published
2020-03-10
·
Updated
2023-04-25
·
CVE-2019-6585
CVSS v3.1
6.1
Medium
| Vector | AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N |
Name of the Vulnerable Software and Affected Versions
SCALANCE S602 versions 3.0 through 4.0
SCALANCE S612 versions 3.0 through 4.0
SCALANCE S623 versions 3.0 through 4.0
SCALANCE S627-2M versions 3.0 through 4.0
Description
A security issue has been identified that could allow Cross-Site Scripting (XSS) attacks. This occurs when unsuspecting users are tricked into accessing a malicious link, requiring user interaction for successful exploitation. The user must be logged into the web interface for the issue to be exploited.
Recommendations
For SCALANCE S602 versions 3.0 through 4.0, update to version 4.1 or later.
For SCALANCE S612 versions 3.0 through 4.0, update to version 4.1 or later.
For SCALANCE S623 versions 3.0 through 4.0, update to version 4.1 or later.
For SCALANCE S627-2M versions 3.0 through 4.0, update to version 4.1 or later.
Fix
XSS
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Scalance S602
Scalance S612
Scalance S623
Scalance S627-2M