CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2022-30228

A vulnerability has been identified in SICAM GridEdge Essential ARM (All versions < V2.6.6), SICAM GridEdge Essential Intel (All versions < V2.6.6), SICAM GridEdge Essential with GDS ARM (All versions < V2.6.6), SICAM GridEdge Essential with GDS Intel (All versions < V2.6.6). The affected software does not apply cross-origin resource sharing (CORS) restrictions for critical operations. In case an attacker tricks a legitimate user into accessing a special resource a malicious request could be executed.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 31.7%

CVSS Severity

CVSS v3 Score 6.5

CVSS v2 Score 4.3

References

https://cert-portal.siemens.com/productcert/pdf/ssa-631336.pdf
https://cert-portal.siemens.com/productcert/pdf/ssa-631336.pdf

Products affected by CVE-2022-30228

Siemens » Sicam Gridedge Essential » Version: N/A

cpe:2.3:a:siemens:sicam_gridedge_essential:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-30228

Products

Pricing

Contact Us