How severe is CVE-2023-46098?

CVE-2023-46098 has a CVSS v3 score of 8 (HIGH).

CVE-2023-46098

Name: simatic_pcs_neo
Author: siemens

8.0HIGH

A vulnerability has been identified in SIMATIC PCS neo (All versions < V4.1). When accessing the Information Server from affected products, the products use an overly permissive CORS policy. This coul

发布于: 11/14/2023更新于: 11/21/2024

描述

A vulnerability has been identified in SIMATIC PCS neo (All versions < V4.1). When accessing the Information Server from affected products, the products use an overly permissive CORS policy. This could allow an attacker to trick a legitimate user to trigger unwanted behavior.

AI分析AI驱动

受影响产品

siemenssimatic_pcs_neo

参考资料

https://cert-portal.siemens.com/productcert/pdf/ssa-456933.pdf
PatchVendor Advisory
https://cert-portal.siemens.com/productcert/pdf/ssa-456933.pdf
PatchVendor Advisory