XSS in Siemens Ie\/wsn-pa_link_wirelesshart_gateway
CVE-2019-13923
A vulnerability has been identified in IE/WSN-PA Link WirelessHART Gateway (All versions). The integrated configuration web server of the affected device could allow Cross-Site Scripting (XSS) attacks if unsuspecting users are tricked into…
EPSS: 0.011 (62.1th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 9.6 (Critical). Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H.
Affected products
Weakness classification (CWE)
References
- productcert@siemens.com (x_refsource_MISC, Vendor Advisory)
- productcert@siemens.com (x_refsource_MISC)
Frequently asked questions
- What is CVE-2019-13923?
- CVE-2019-13923 is a critical-severity vulnerability in Siemens Ie\/wsn-pa_link_wirelesshart_gateway, classified under Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS). CVSS score: 9.6/10. Published 2019-09-13.
- How severe is CVE-2019-13923?
- Critical severity. CVSS v3 base score is 9.6 out of 10.