Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Cross-site request forgery (CSRF) vulnerability in Siemens WinCC (TIA Portal) 11 and 12 before 12 SP1 allows remote attackers to hijack the authentication of unspecified victims by leveraging improper configuration of SIMATIC HMI panels by the WinCC product.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Siemens SIMATIC WinCC TIA Portal 跨站请求伪造漏洞
Vulnerability Description
Siemens SIMATIC WinCC TIA Portal(博途)是德国西门子(Siemens)公司的一套工程技术软件平台。该软件能够快速、直观地开发和调试自动化系统。 Siemens WinCC (TIA Portal) 11.0至11.0:sp2版本和WinCC (TIA Portal) 12.0版本中存在跨站请求伪造漏洞。远程攻击者可通过WinCC产品不正确配置的SIMATIC HMI面板,利用该漏洞劫持用户的身份认证。
CVSS Information
N/A
Vulnerability Type
N/A