CVE-2020-7579

CVE-2020-7579

Vendor Siemens Ag
Product Spectrum Power™ 5
Weakness CWE-80 · XSS · basic
Published March 10, 2020
Last update August 4, 2024

CVSS base score

What the vulnerability does

01Description

A vulnerability has been identified in Spectrum Power™ 5 (All versions < v5.50 HF02). The web server could allow Cross-Site Scripting (XSS) attacks if unsuspecting users are tricked into accessing a malicious link. User interaction is required for a successful exploitation. If deployed according to recommended system configuration, Siemens consideres the environmental vector as CR:L/IR:M/AR:H/MAV:A (4.1).

Key dates

02Disclosure timeline

March 10, 2020 CVE published
August 4, 2024 Record updated

Related vulnerabilities

04Related CVE