Total vulnerabilities in the database
Cross-site scripting (XSS) vulnerability in the integrated web server on Siemens SIMATIC S7-1500 CPU PLC devices with firmware before 1.5.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
| Software | From | Fixed in |
|---|---|---|
| siemens / simatic_s7-1500_cpu_firmware | 1.1.1 | 1.1.1.x |
| siemens / simatic_s7-1500_cpu_firmware | 1.0.1 | 1.0.1.x |
| siemens / simatic_s7-1500_cpu_firmware | 1.1.0 | 1.1.0.x |
| siemens / simatic_s7-1500_cpu_firmware | - | 1.1.2.x |