Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cnvdChina National Vulnerability DatabaseCNVD-2022-02747
HistoryJan 12, 2022 - 12:00 a.m.

Siemens COMOS Web Component Cross-Site Scripting Vulnerability

2022-01-1200:00:00
China National Vulnerability Database
www.cnvd.org.cn
10
siemens
comos
web component
cross-site scripting
vulnerability
plant design
operations
management
data platform
collaborative
plant lifecycle
attack
exploitation
malicious code
attachments

EPSS

0.001

Percentile

32.4%

JSON

COMOS is a unified data platform for collaborative plant design, operations, and management that supports the collection, processing, storage, and distribution of information throughout the plant lifecycle.A cross-site scripting vulnerability exists in the Siemens COMOS Web component that could be exploited by an attacker to inject malicious code that is executed when loading attachments.

Related

cvelist 1
cve 1
nvd 1
prion 1
ics 1
cvelist
cvelist
CVE-2021-37195
2022-01-11 11:27:13
cve
cve
CVE-2021-37195
2022-01-11 12:15:09
nvd
nvd
CVE-2021-37195
2022-01-11 12:15:09
prion
prion
Code injection
2022-01-11 12:15:00
ics
ics
Siemens COMOS Web (Update B)
2022-04-14 12:00:00

EPSS

0.001

Percentile

32.4%

JSON
Related for CNVD-2022-02747
cvelist1cve1nvd1prion1ics1