N/A

A vulnerability has been identified in Desigo PXM30-1 (All versions < V02.20.126.11-41), Desigo PXM30.E (All versions < V02.20.126.11-41), Desigo PXM40-1 (All versions < V02.20.126.11-41), Desigo PXM40.E (All versions < V02.20.126.11-41), Desigo PXM50-1 (All versions < V02.20.126.11-41), Desigo PXM50.E (All versions < V02.20.126.11-41), PXG3.W100-1 (All versions < V02.20.126.11-37), PXG3.W100-2 (All versions < V02.20.126.11-41), PXG3.W200-1 (All versions < V02.20.126.11-37), PXG3.W200-2 (All versions < V02.20.126.11-41). The device embedded browser does not prevent interaction with alternative URI schemes when redirected to corresponding resources by web application code. By setting the homepage URI, the favorite URIs, or redirecting embedded browser users via JavaScript code to alternative scheme resources, a remote low privileged attacker can perform a range of attacks against the device, such as read arbitrary files on the filesystem, execute arbitrary JavaScript code in order to steal or manipulate the information on the screen, or trigger denial of service conditions.

N/A

Web页面编码URIScheme转义处理不恰当

多款Siemens产品跨站脚本漏洞

Siemens Desigo PX是德国西门子（Siemens）公司的一套楼宇自动化控制系统。 Siemens 多款产品存在安全漏洞，该漏洞源于当 Web 应用程序代码重定向到相应的资源时，设备嵌入式浏览器不会阻止与替代 URI 方案的交互。通过设置主页 URI、收藏 URI 或通过 JavaScript 代码将嵌入式浏览器用户重定向到替代方案资源，远程低权限攻击者可以对设备执行一系列攻击，例如读取文件系统上的任意文件、执行任意 JavaScript代码以窃取或操纵屏幕上的信息，或触发拒绝服务条件。Des

N/A

N/A