CVE-2022-30228

Summary

A vulnerability has been identified in SICAM GridEdge (Classic) (All versions < V2.6.6). The affected software does not apply cross-origin resource sharing (CORS) restrictions for critical operations. In case an attacker tricks a legitimate user into accessing a special resource a malicious request could be executed.

Affected Software

VendorProductVersion RangeStatus
SiemensSICAM GridEdge (Classic)0 < V2.6.6affected

Weaknesses

  • CWE-346: CWE-346: Origin Validation Error

ADP Enrichment

CVE Program Container

Additional References

References