CVE-2022-40181

moderate-risk
Published 2022-10-11

A vulnerability has been identified in Desigo PXM30-1 (All versions < V02.20.126.11-41), Desigo PXM30.E (All versions < V02.20.126.11-41), Desigo PXM40-1 (All versions < V02.20.126.11-41), Desigo PXM40.E (All versions < V02.20.126.11-41), Desigo PXM50-1 (All versions < V02.20.126.11-41), Desigo PXM50.E (All versions < V02.20.126.11-41), PXG3.W100-1 (All versions < V02.20.126.11-37), PXG3.W100-2 (All versions < V02.20.126.11-41), PXG3.W200-1 (All versions < V02.20.126.11-37), PXG3.W200-2 (All versions < V02.20.126.11-41). The device embedded browser does not prevent interaction with alternative URI schemes when redirected to corresponding resources by web application code. By setting the homepage URI, the favorite URIs, or redirecting embedded browser users via JavaScript code to alternative scheme resources, a remote low privileged attacker can perform a range of attacks against the device, such as read arbitrary files on the filesystem, execute arbitrary JavaScript code in order to steal or manipulate the information on the screen, or trigger denial of service conditions.

Do I need to act?

-
0.70% chance of exploitation
EPSS score — low exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
8
CVSS 8.3/10 High
NETWORK / LOW complexity

Affected Products (10)

Desigo Pxm30-1 Firmware
Desigo Pxm30.E Firmware
Desigo Pxm40-1 Firmware
Desigo Pxm40.E Firmware
Desigo Pxm50-1 Firmware
Desigo Pxm50.E Firmware
Pxg3.W100-1 Firmware
Pxg3.W100-2 Firmware
Pxg3.W200-1 Firmware
Pxg3.W200-2 Firmware

Affected Vendors

Siemens

References (2)

Patch https://cert-portal.siemens.com/productcert/pdf/ssa-360783.pdf
Patch https://cert-portal.siemens.com/productcert/pdf/ssa-360783.pdf
47
/ 100
moderate-risk
Severity 29/34 · Critical
Exploitability 2/34 · Minimal
Exposure 16/34 · Moderate