VDB
CVE-2023-46281
CVE-2023-46281
PUBLISHED
Es existiert eine Schwachstelle in Siemens TIA Portal. Beim Zugriff auf die UMC Web-UI von betroffenen Produkten aus verwendet UMC eine übermäßig freizügige CORS-Richtlinie. Ein Angreifer kann diese Schwachstelle ausnutzen, um ein unerwünschtes Verhalten auszulösen.
EPSS 0.11% · 29.1th percentile
Risk Scores
EPSS Score
0.11%
29.1th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Siemens | Siemens TIA Portal V16 | |
| Siemens | Siemens TIA Portal V17 | |
| Siemens | Siemens TIA Portal V14 | |
| Siemens | Siemens TIA Portal V15.1 |
Exploit Intelligence
- Scan for python installations on macOS, and run CVE-2015-20107.py script to report if patching is needed (github-poc)
- Scan for python installations on macOS, and run CVE-2015-20107.py script to report if patching is needed (github-poc)
- Scan for python installations on macOS, and run CVE-2015-20107.py script to report if patching is needed (github-poc)
- Scan for python installations on macOS, and run CVE-2015-20107.py script to report if patching is needed (github-poc)
- Scan for python installations on macOS, and run CVE-2015-20107.py script to report if patching is needed (github-poc)
- Scan for python installations on macOS, and run CVE-2015-20107.py script to report if patching is needed (github-poc)
- https://cert-portal.siemens.com/productcert/pdf/ssa-999588.pdf (circl)
- https://cert-portal.siemens.com/productcert/html/ssa-999588.html (circl)
Timeline
- Dec 11, 2023 CVE Published
- Dec 13, 2023 EPSS Score
- Jan 11, 2024 EPSS Score
- Feb 9, 2024 EPSS Score
- Mar 10, 2024 EPSS Score
- Apr 8, 2024 EPSS Score
- May 7, 2024 EPSS Score
- Jun 5, 2024 EPSS Score
- Jul 5, 2024 EPSS Score
- Aug 3, 2024 EPSS Score
- Sep 1, 2024 EPSS Score
- Sep 30, 2024 EPSS Score