Vulnerability Details CVE-2022-30694
The login endpoint /FormLogin in affected web services does not apply proper origin checking.
This could allow authenticated remote attackers to track the activities of other users via a login cross-site request forgery attack.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 35.6%
CVSS Severity
CVSS v3 Score 6.5
References
Products affected by CVE-2022-30694
-
cpe:2.3:a:siemens:simatic_s7-1500_software_controller:-
-
cpe:2.3:a:siemens:simatic_s7-plcsim_advanced:-
-
cpe:2.3:a:siemens:simatic_wincc_runtime:-
-
cpe:2.3:h:siemens:6ag1151-8ab01-7ab0:-
-
cpe:2.3:h:siemens:6ag1151-8fb01-2ab0:-
-
cpe:2.3:h:siemens:6ag1314-6eh04-7ab0:-
-
cpe:2.3:h:siemens:6ag1315-2eh14-7ab0:-
-
cpe:2.3:h:siemens:6ag1315-2fj14-2ab0:-
-
cpe:2.3:h:siemens:6ag1317-2ek14-7ab0:-
-
cpe:2.3:h:siemens:6ag1317-2fk14-2ab0:-
-
cpe:2.3:h:siemens:6es7151-8ab01-0ab0:-
-
cpe:2.3:h:siemens:6es7151-8fb01-0ab0:-
-
cpe:2.3:h:siemens:6es7154-8ab01-0ab0:-
-
cpe:2.3:h:siemens:6es7154-8fb01-0ab0:-
-
cpe:2.3:h:siemens:6es7154-8fx00-0ab0:-
-
cpe:2.3:h:siemens:6es7314-6eh04-0ab0:-
-
cpe:2.3:h:siemens:6es7315-2eh14-0ab0:-
-
cpe:2.3:h:siemens:6es7315-2fj14-0ab0:-
-
cpe:2.3:h:siemens:6es7315-7tj10-0ab0:-
-
cpe:2.3:h:siemens:6es7317-2ek14-0ab0:-
-
cpe:2.3:h:siemens:6es7317-2fk14-0ab0:-
-
cpe:2.3:h:siemens:6es7317-7tk10-0ab0:-
-
cpe:2.3:h:siemens:6es7317-7ul10-0ab0:-
-
cpe:2.3:h:siemens:6es7318-3el01-0ab0:-
-
cpe:2.3:h:siemens:6es7318-3fl01-0ab0:-
-
cpe:2.3:h:siemens:simatic_drive_controller_cpu_1504d_tf:-
-
cpe:2.3:h:siemens:simatic_drive_controller_cpu_1507d_tf:-
-
cpe:2.3:h:siemens:simatic_pcs:-
-
cpe:2.3:h:siemens:simatic_s7-1200_cpu_1211c:-
-
cpe:2.3:h:siemens:simatic_s7-1200_cpu_1212c:-
-
cpe:2.3:h:siemens:simatic_s7-1200_cpu_1212fc:-
-
cpe:2.3:h:siemens:simatic_s7-1200_cpu_1214_fc:-
-
cpe:2.3:h:siemens:simatic_s7-1200_cpu_1214c:-
-
cpe:2.3:h:siemens:simatic_s7-1200_cpu_1214fc:-
-
cpe:2.3:h:siemens:simatic_s7-1200_cpu_1215_fc:-
-
cpe:2.3:h:siemens:simatic_s7-1200_cpu_1215c:-
-
cpe:2.3:h:siemens:simatic_s7-1200_cpu_1215fc:-
-
cpe:2.3:h:siemens:simatic_s7-1200_cpu_1217c:-
-
cpe:2.3:h:siemens:simatic_s7-1200_cpu_12_1211c:-
-
cpe:2.3:h:siemens:simatic_s7-1200_cpu_12_1212c:-
-
cpe:2.3:h:siemens:simatic_s7-1200_cpu_12_1212fc:-
-
cpe:2.3:h:siemens:simatic_s7-1200_cpu_12_1214c:-
-
cpe:2.3:h:siemens:simatic_s7-1200_cpu_12_1214fc:-
-
cpe:2.3:h:siemens:simatic_s7-1200_cpu_12_1215c:-
-
cpe:2.3:h:siemens:simatic_s7-1200_cpu_12_1215fc:-
-
cpe:2.3:h:siemens:simatic_s7-1200_cpu_12_1217c:-
-
cpe:2.3:h:siemens:simatic_s7-1500_cpu_1507s:-
-
cpe:2.3:h:siemens:simatic_s7-1500_cpu_1507s_f:-
-
cpe:2.3:h:siemens:simatic_s7-1500_cpu_1508s:-
-
cpe:2.3:h:siemens:simatic_s7-1500_cpu_1508s_f:-
-
cpe:2.3:h:siemens:simatic_s7-1500_cpu_1510sp-1:-
-
cpe:2.3:h:siemens:simatic_s7-1500_cpu_1510sp:-
-
cpe:2.3:h:siemens:simatic_s7-1500_cpu_1511-1:-
-
cpe:2.3:h:siemens:simatic_s7-1500_cpu_1511-1_pn:-
-
cpe:2.3:h:siemens:simatic_s7-1500_cpu_1511c-1:-
-
cpe:2.3:h:siemens:simatic_s7-1500_cpu_1511c:-
-
cpe:2.3:h:siemens:simatic_s7-1500_cpu_1511f-1:-
-
cpe:2.3:h:siemens:simatic_s7-1500_cpu_1511f-1_pn:-
-
cpe:2.3:h:siemens:simatic_s7-1500_cpu_1511t-1:-
-
cpe:2.3:h:siemens:simatic_s7-1500_cpu_1511tf-1:-
-
cpe:2.3:h:siemens:simatic_s7-1500_cpu_1512c-1:-
-
cpe:2.3:h:siemens:simatic_s7-1500_cpu_1512c:-
-
cpe:2.3:h:siemens:simatic_s7-1500_cpu_1512sp-1:-
-
cpe:2.3:h:siemens:simatic_s7-1500_cpu_1512spf-1:-
-
cpe:2.3:h:siemens:simatic_s7-1500_cpu_1513-1:-
-
cpe:2.3:h:siemens:simatic_s7-1500_cpu_1513-1_pn:-
-
cpe:2.3:h:siemens:simatic_s7-1500_cpu_1513f-1:-
-
cpe:2.3:h:siemens:simatic_s7-1500_cpu_1513f-1_pn:-
-
cpe:2.3:h:siemens:simatic_s7-1500_cpu_1513r-1:-
-
cpe:2.3:h:siemens:simatic_s7-1500_cpu_1515-2:-
-
cpe:2.3:h:siemens:simatic_s7-1500_cpu_1515-2_pn:-
-
cpe:2.3:h:siemens:simatic_s7-1500_cpu_151511c-1:-
-
cpe:2.3:h:siemens:simatic_s7-1500_cpu_151511f-1:-
-
cpe:2.3:h:siemens:simatic_s7-1500_cpu_1515f-2:-
-
cpe:2.3:h:siemens:simatic_s7-1500_cpu_1515f-2_pn:-
-
cpe:2.3:h:siemens:simatic_s7-1500_cpu_1515r-2:-
-
cpe:2.3:h:siemens:simatic_s7-1500_cpu_1515t-2:-
-
cpe:2.3:h:siemens:simatic_s7-1500_cpu_1515tf-2:-
-
cpe:2.3:h:siemens:simatic_s7-1500_cpu_1516-3:-
-
cpe:2.3:h:siemens:simatic_s7-1500_cpu_1516-3_dp:-
-
cpe:2.3:h:siemens:simatic_s7-1500_cpu_1516-3_pn/dp:-
-
cpe:2.3:h:siemens:simatic_s7-1500_cpu_1516-3_pn:-
-
cpe:2.3:h:siemens:simatic_s7-1500_cpu_1516f-3:-
-
cpe:2.3:h:siemens:simatic_s7-1500_cpu_1516f-3_pn/dp:-
-
cpe:2.3:h:siemens:simatic_s7-1500_cpu_1516pro-2:-
-
cpe:2.3:h:siemens:simatic_s7-1500_cpu_1516pro_f:-
-
cpe:2.3:h:siemens:simatic_s7-1500_cpu_1516t-3:-
-
cpe:2.3:h:siemens:simatic_s7-1500_cpu_1516tf-3:-
-
cpe:2.3:h:siemens:simatic_s7-1500_cpu_1517-3:-
-
cpe:2.3:h:siemens:simatic_s7-1500_cpu_1517-3_dp:-
-
cpe:2.3:h:siemens:simatic_s7-1500_cpu_1517-3_pn/dp:-
-
cpe:2.3:h:siemens:simatic_s7-1500_cpu_1517-3_pn:-
-
cpe:2.3:h:siemens:simatic_s7-1500_cpu_1517f-3:-
-
cpe:2.3:h:siemens:simatic_s7-1500_cpu_1517f-3_pn/dp:-
-
cpe:2.3:h:siemens:simatic_s7-1500_cpu_1517tf-3:-
-
cpe:2.3:h:siemens:simatic_s7-1500_cpu_1518-4:-
-
cpe:2.3:h:siemens:simatic_s7-1500_cpu_1518-4_dp:-
-
cpe:2.3:h:siemens:simatic_s7-1500_cpu_1518-4_pn/dp:-
-
cpe:2.3:h:siemens:simatic_s7-1500_cpu_1518-4_pn/dp_mfp:-
-
cpe:2.3:h:siemens:simatic_s7-1500_cpu_1518-4_pn:-
-
cpe:2.3:h:siemens:simatic_s7-1500_cpu_1518:-
-
cpe:2.3:h:siemens:simatic_s7-1500_cpu_1518f-4:-
-
cpe:2.3:h:siemens:simatic_s7-1500_cpu_1518f-4_pn/dp:-
-
cpe:2.3:h:siemens:simatic_s7-1500_cpu_1518hf-4:-
-
cpe:2.3:h:siemens:simatic_s7-1500_cpu_1518t-4:-
-
cpe:2.3:h:siemens:simatic_s7-1500_cpu_1518tf-4:-
-
cpe:2.3:h:siemens:simatic_s7-1500_cpu_15pro-2:-
-
cpe:2.3:h:siemens:simatic_s7-1500_cpu_15prof-2:-
-
cpe:2.3:h:siemens:simatic_s7-1500_cpu_cpu_1513pro-2:-
-
cpe:2.3:h:siemens:simatic_s7-1500_cpu_cpu_1513prof-2:-
-
cpe:2.3:h:siemens:simatic_s7-400_pn/dp_v6:-
-
cpe:2.3:h:siemens:simatic_s7-400_pn/dp_v7:-
-
cpe:2.3:h:siemens:sinumerik_one:-
-
cpe:2.3:o:siemens:6ag1151-8ab01-7ab0_firmware:*
-
cpe:2.3:o:siemens:6ag1151-8fb01-2ab0_firmware:*
-
cpe:2.3:o:siemens:6ag1314-6eh04-7ab0_firmware:*
-
cpe:2.3:o:siemens:6ag1315-2eh14-7ab0_firmware:*
-
cpe:2.3:o:siemens:6ag1315-2fj14-2ab0_firmware:*
-
cpe:2.3:o:siemens:6ag1317-2ek14-7ab0_firmware:*
-
cpe:2.3:o:siemens:6ag1317-2fk14-2ab0_firmware:*
-
cpe:2.3:o:siemens:6es7151-8ab01-0ab0_firmware:*
-
cpe:2.3:o:siemens:6es7151-8fb01-0ab0_firmware:*
-
cpe:2.3:o:siemens:6es7154-8ab01-0ab0_firmware:*
-
cpe:2.3:o:siemens:6es7154-8fb01-0ab0_firmware:*
-
cpe:2.3:o:siemens:6es7154-8fx00-0ab0_firmware:*
-
cpe:2.3:o:siemens:6es7314-6eh04-0ab0_firmware:-
-
cpe:2.3:o:siemens:6es7315-2eh14-0ab0_firmware:*
-
cpe:2.3:o:siemens:6es7315-2fj14-0ab0_firmware:*
-
cpe:2.3:o:siemens:6es7315-7tj10-0ab0_firmware:*
-
cpe:2.3:o:siemens:6es7317-2ek14-0ab0_firmware:*
-
cpe:2.3:o:siemens:6es7317-2fk14-0ab0_firmware:*
-
cpe:2.3:o:siemens:6es7317-7tk10-0ab0_firmware:*
-
cpe:2.3:o:siemens:6es7317-7ul10-0ab0_firmware:*
-
cpe:2.3:o:siemens:6es7318-3el01-0ab0_firmware:*
-
cpe:2.3:o:siemens:6es7318-3fl01-0ab0_firmware:*
-
cpe:2.3:o:siemens:simatic_drive_controller_cpu_1504d_tf_firmware:-
-
cpe:2.3:o:siemens:simatic_drive_controller_cpu_1507d_tf_firmware:-
-
cpe:2.3:o:siemens:simatic_pcs_firmware:*
-
cpe:2.3:o:siemens:simatic_s7-1200_cpu_1211c_firmware:-
-
cpe:2.3:o:siemens:simatic_s7-1200_cpu_1212c_firmware:-
-
cpe:2.3:o:siemens:simatic_s7-1200_cpu_1212fc_firmware:-
-
cpe:2.3:o:siemens:simatic_s7-1200_cpu_1214_fc_firmware:-
-
cpe:2.3:o:siemens:simatic_s7-1200_cpu_1214c_firmware:-
-
cpe:2.3:o:siemens:simatic_s7-1200_cpu_1214fc_firmware:-
-
cpe:2.3:o:siemens:simatic_s7-1200_cpu_1215_fc_firmware:-
-
cpe:2.3:o:siemens:simatic_s7-1200_cpu_1215c_firmware:-
-
cpe:2.3:o:siemens:simatic_s7-1200_cpu_1215fc_firmware:-
-
cpe:2.3:o:siemens:simatic_s7-1200_cpu_1217c_firmware:-
-
cpe:2.3:o:siemens:simatic_s7-1200_cpu_12_1211c_firmware:-
-
cpe:2.3:o:siemens:simatic_s7-1200_cpu_12_1212c_firmware:-
-
cpe:2.3:o:siemens:simatic_s7-1200_cpu_12_1212fc_firmware:-
-
cpe:2.3:o:siemens:simatic_s7-1200_cpu_12_1214c_firmware:-
-
cpe:2.3:o:siemens:simatic_s7-1200_cpu_12_1214fc_firmware:-
-
cpe:2.3:o:siemens:simatic_s7-1200_cpu_12_1215c_firmware:-
-
cpe:2.3:o:siemens:simatic_s7-1200_cpu_12_1215fc_firmware:-
-
cpe:2.3:o:siemens:simatic_s7-1200_cpu_12_1217c_firmware:-
-
cpe:2.3:o:siemens:simatic_s7-1500_cpu_1507s_f_firmware:-
-
cpe:2.3:o:siemens:simatic_s7-1500_cpu_1507s_firmware:-
-
cpe:2.3:o:siemens:simatic_s7-1500_cpu_1508s_f_firmware:-
-
cpe:2.3:o:siemens:simatic_s7-1500_cpu_1508s_firmware:-
-
cpe:2.3:o:siemens:simatic_s7-1500_cpu_1510sp-1_firmware:-
-
cpe:2.3:o:siemens:simatic_s7-1500_cpu_1510sp_firmware:-
-
cpe:2.3:o:siemens:simatic_s7-1500_cpu_1511-1_firmware:-
-
cpe:2.3:o:siemens:simatic_s7-1500_cpu_1511-1_pn_firmware:-
-
cpe:2.3:o:siemens:simatic_s7-1500_cpu_1511c-1_firmware:-
-
cpe:2.3:o:siemens:simatic_s7-1500_cpu_1511c_firmware:-
-
cpe:2.3:o:siemens:simatic_s7-1500_cpu_1511f-1_firmware:-
-
cpe:2.3:o:siemens:simatic_s7-1500_cpu_1511f-1_pn_firmware:-
-
cpe:2.3:o:siemens:simatic_s7-1500_cpu_1511t-1_firmware:-
-
cpe:2.3:o:siemens:simatic_s7-1500_cpu_1511tf-1_firmware:-
-
cpe:2.3:o:siemens:simatic_s7-1500_cpu_1512c-1_firmware:-
-
cpe:2.3:o:siemens:simatic_s7-1500_cpu_1512c_firmware:-
-
cpe:2.3:o:siemens:simatic_s7-1500_cpu_1512sp-1_firmware:-
-
cpe:2.3:o:siemens:simatic_s7-1500_cpu_1512spf-1_firmware:-
-
cpe:2.3:o:siemens:simatic_s7-1500_cpu_1513-1_firmware:-
-
cpe:2.3:o:siemens:simatic_s7-1500_cpu_1513-1_pn_firmware:-
-
cpe:2.3:o:siemens:simatic_s7-1500_cpu_1513f-1_firmware:-
-
cpe:2.3:o:siemens:simatic_s7-1500_cpu_1513f-1_pn_firmware:-
-
cpe:2.3:o:siemens:simatic_s7-1500_cpu_1513r-1_firmware:-
-
cpe:2.3:o:siemens:simatic_s7-1500_cpu_1515-2_firmware:-
-
cpe:2.3:o:siemens:simatic_s7-1500_cpu_1515-2_pn_firmware:-
-
cpe:2.3:o:siemens:simatic_s7-1500_cpu_151511c-1_firmware:-
-
cpe:2.3:o:siemens:simatic_s7-1500_cpu_151511f-1_firmware:-
-
cpe:2.3:o:siemens:simatic_s7-1500_cpu_1515f-2_firmware:-
-
cpe:2.3:o:siemens:simatic_s7-1500_cpu_1515f-2_pn_firmware:-
-
cpe:2.3:o:siemens:simatic_s7-1500_cpu_1515r-2_firmware:-
-
cpe:2.3:o:siemens:simatic_s7-1500_cpu_1515t-2_firmware:-
-
cpe:2.3:o:siemens:simatic_s7-1500_cpu_1515tf-2_firmware:-
-
cpe:2.3:o:siemens:simatic_s7-1500_cpu_1516-3_dp_firmware:-
-
cpe:2.3:o:siemens:simatic_s7-1500_cpu_1516-3_firmware:-
-
cpe:2.3:o:siemens:simatic_s7-1500_cpu_1516-3_pn/dp_firmware:-
-
cpe:2.3:o:siemens:simatic_s7-1500_cpu_1516-3_pn_firmware:-
-
cpe:2.3:o:siemens:simatic_s7-1500_cpu_1516f-3_firmware:-
-
cpe:2.3:o:siemens:simatic_s7-1500_cpu_1516f-3_pn/dp_firmware:-
-
cpe:2.3:o:siemens:simatic_s7-1500_cpu_1516pro-2_firmware:-
-
cpe:2.3:o:siemens:simatic_s7-1500_cpu_1516pro_f_firmware:-
-
cpe:2.3:o:siemens:simatic_s7-1500_cpu_1516t-3_firmware:-
-
cpe:2.3:o:siemens:simatic_s7-1500_cpu_1516tf-3_firmware:-
-
cpe:2.3:o:siemens:simatic_s7-1500_cpu_1517-3_dp_firmware:-
-
cpe:2.3:o:siemens:simatic_s7-1500_cpu_1517-3_firmware:-
-
cpe:2.3:o:siemens:simatic_s7-1500_cpu_1517-3_pn/dp_firmware:-
-
cpe:2.3:o:siemens:simatic_s7-1500_cpu_1517-3_pn_firmware:-
-
cpe:2.3:o:siemens:simatic_s7-1500_cpu_1517f-3_firmware:-
-
cpe:2.3:o:siemens:simatic_s7-1500_cpu_1517f-3_pn/dp_firmware:-
-
cpe:2.3:o:siemens:simatic_s7-1500_cpu_1517tf-3_firmware:-
-
cpe:2.3:o:siemens:simatic_s7-1500_cpu_1518-4_dp_firmware:-
-
cpe:2.3:o:siemens:simatic_s7-1500_cpu_1518-4_firmware:-
-
cpe:2.3:o:siemens:simatic_s7-1500_cpu_1518-4_pn/dp_firmware:-
-
cpe:2.3:o:siemens:simatic_s7-1500_cpu_1518-4_pn/dp_mfp_firmware:-
-
cpe:2.3:o:siemens:simatic_s7-1500_cpu_1518-4_pn_firmware:-
-
cpe:2.3:o:siemens:simatic_s7-1500_cpu_1518_firmware:-
-
cpe:2.3:o:siemens:simatic_s7-1500_cpu_1518f-4_firmware:-
-
cpe:2.3:o:siemens:simatic_s7-1500_cpu_1518f-4_pn/dp_firmware:-
-
cpe:2.3:o:siemens:simatic_s7-1500_cpu_1518hf-4_firmware:-
-
cpe:2.3:o:siemens:simatic_s7-1500_cpu_1518t-4_firmware:-
-
cpe:2.3:o:siemens:simatic_s7-1500_cpu_1518tf-4_firmware:-
-
cpe:2.3:o:siemens:simatic_s7-1500_cpu_15pro-2_firmware:-
-
cpe:2.3:o:siemens:simatic_s7-1500_cpu_15prof-2_firmware:-
-
cpe:2.3:o:siemens:simatic_s7-1500_cpu_cpu_1513pro-2_firmware:-
-
cpe:2.3:o:siemens:simatic_s7-1500_cpu_cpu_1513prof-2_firmware:-
-
cpe:2.3:o:siemens:simatic_s7-400_pn/dp_v6_firmware:-
-
cpe:2.3:o:siemens:simatic_s7-400_pn/dp_v7_firmware:-
-
cpe:2.3:o:siemens:sinumerik_one_firmware:-