SSA-416411 — Vulnetix

SSA-416411 PUBLISHED CVSS 4.699999809265137 MEDIUM

Industrial Edge Management is affected by a reflected cross-site scripting (XSS) vulnerability that could allow an attacker to extract sensitive information by tricking users into accessing a malicious link. Siemens recommends countermeasures for products where fixes are not, or not yet available.

Risk Scores

CVSS v3.1

4.699999809265137

CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:L/A:N/E:P/RL:U/RC:C

Affected Products

Vendor	Product	Versions
	Industrial Edge Management OS (IEM-OS)

Timeline

Jan 14, 2025 CVE Published

References

https://cert-portal.siemens.com/productcert/html/ssa-416411.html advisory
https://cert-portal.siemens.com/productcert/csaf/ssa-416411.json advisory

Open in Interactive Console →