VDB
CVE-2021-33710
CVE-2021-33710
PUBLISHED
CVSS 6.099999904632568 MEDIUM
A vulnerability has been identified in Teamcenter Active Workspace V4 (All versions < V4.3.9), Teamcenter Active Workspace V5.0 (All versions < V5.0.7), Teamcenter Active Workspace V5.1 (All versions < V5.1.4). A reflected cross-site scripting (XSS) vulnerability exists in the web interface of the affected devices that could allow an attacker to execute malicious JavaScript code by tricking users into accessing a malicious link.
EPSS 0.29% · 52.3th percentile
Risk Scores
CVSS 3.1
6.099999904632568
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
EPSS Score
0.29%
52.3th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| siemens | teamcenter_active_workspace | 4.0.0, 5.0.0, 5.1.0 |
| Siemens | Teamcenter Active Workspace V5.0 | All versions < V5.0.7 |
| Siemens | Teamcenter Active Workspace V4 | All versions < V4.3.9 |
| Siemens | Teamcenter Active Workspace V5.1 | All versions < V5.1.4 |
Exploit Intelligence
Timeline
- Jul 13, 2021 CVE Published
- Jul 14, 2021 EPSS Score
- Sep 12, 2021 EPSS Score
- Nov 10, 2021 EPSS Score
- Jan 6, 2022 EPSS Score
- Feb 4, 2022 EPSS Score
- Mar 10, 2022 EPSS Score
- Apr 1, 2022 EPSS Score
- May 8, 2022 EPSS Score
- Jul 7, 2022 EPSS Score
- Sep 6, 2022 EPSS Score
- Nov 4, 2022 EPSS Score
References
- https://cert-portal.siemens.com/productcert/pdf/ssa-641963.pdf advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-729965.pdf advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-560465.pdf advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-772220.pdf advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-434536.pdf advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-209268.pdf advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-173615.pdf advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-675303.pdf advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-434535.pdf advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-599968.pdf advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-622535.pdf advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-941426.pdf advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-661034.pdf advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-373591.pdf advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-352521.pdf advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-913875.pdf advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-483182.pdf advisory
- https://nvd.nist.gov/vuln/detail/CVE-2021-33710 advisory