N/A

A vulnerability has been identified in Desigo PXM30-1 (All versions < V02.20.126.11-41), Desigo PXM30.E (All versions < V02.20.126.11-41), Desigo PXM40-1 (All versions < V02.20.126.11-41), Desigo PXM40.E (All versions < V02.20.126.11-41), Desigo PXM50-1 (All versions < V02.20.126.11-41), Desigo PXM50.E (All versions < V02.20.126.11-41), PXG3.W100-1 (All versions < V02.20.126.11-37), PXG3.W100-2 (All versions < V02.20.126.11-41), PXG3.W200-1 (All versions < V02.20.126.11-37), PXG3.W200-2 (All versions < V02.20.126.11-41). A Cross-Site Request Forgery exists in the “Import Files“ functionality of the “Operation” web application due to the missing validation of anti-CSRF tokens or other origin checks. A remote unauthenticated attacker can upload and enable permanent arbitrary JavaScript code into the device just by convincing a victim to visit a specifically crafted webpage while logged-in to the device web application.

N/A

跨站请求伪造(CSRF)

多款Siemens产品跨站请求伪造漏洞

Siemens Desigo PX是德国西门子（Siemens）公司的一套楼宇自动化控制系统。 Siemens 多款产品存在跨站请求伪造漏洞，该漏洞源于由于缺少对反 CSRF 令牌或其他来源检查的验证，“Operation” Web 应用程序的 Import Files 功能中存在跨站点请求伪造。远程未经身份验证的攻击者只需说服受害者在登录设备 Web 应用程序时访问特制网页，即可将永久任意 JavaScript 代码上传并启用设备。Desigo PXM30-1 V02.20.126.11-41 版本之前

N/A

N/A