CVE-2020-10041

Summary

A vulnerability has been identified in SICAM MMU (All versions < V2.05), SICAM SGU (All versions), SICAM T (All versions < V2.18). A stored Cross-Site-Scripting (XSS) vulnerability is present in different locations of the web application. An attacker might be able to take over a session of a legitimate user.

Affected Software

VendorProductVersion RangeStatus
Siemens AGSICAM MMUAll versions < V2.05affected
Siemens AGSICAM SGUAll versionsaffected
Siemens AGSICAM TAll versions < V2.18affected

Weaknesses

  • CWE-79: CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

ADP Enrichment

CVE Program Container

Additional References

References