Description
Open redirect vulnerability in the integrated web server on Siemens SIMATIC S7-1200 CPU devices with firmware before 4.1 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors.
References (2)
Core 2
Core References
Vendor Advisory x_refsource_confirm
http://www.siemens.com/innovation/pool/de/forschungsfelder/siemens_security_advisory_ssa-597212.pdf
Vendor Advisory x_refsource_confirm
https://cert-portal.siemens.com/productcert/pdf/ssa-597212.pdf
Scores
EPSS
0.0022
EPSS Percentile
45.0%
Details
Status
published
Products (1)
siemens/simatic_s7_1200_cpu_firmware
< 4.0
Published
Jan 21, 2015
Tracked Since
Feb 18, 2026