CVE-2022-40178

MEDIUM

Siemens Desigo PXM and PXG3 - Stored Cross-Site Scripting via Import Files Functionality

Title source: llm

Description

A vulnerability has been identified in Desigo PXM30-1 (All versions < V02.20.126.11-41), Desigo PXM30.E (All versions < V02.20.126.11-41), Desigo PXM40-1 (All versions < V02.20.126.11-41), Desigo PXM40.E (All versions < V02.20.126.11-41), Desigo PXM50-1 (All versions < V02.20.126.11-41), Desigo PXM50.E (All versions < V02.20.126.11-41), PXG3.W100-1 (All versions < V02.20.126.11-37), PXG3.W100-2 (All versions < V02.20.126.11-41), PXG3.W200-1 (All versions < V02.20.126.11-37), PXG3.W200-2 (All versions < V02.20.126.11-41). Improper Neutralization of Input During Web Page Generation exists in the “Import Files“ functionality of the “Operation” web application, due to the missing validation of the titles of files included in the input package. By uploading a specifically crafted graphics package, a remote low-privileged attacker can execute arbitrary JavaScript code.

References (1)

Core 1

Core References

Patch, Vendor Advisory

https://cert-portal.siemens.com/productcert/pdf/ssa-360783.pdf

Scores

CVSS v3 5.4

EPSS 0.0020

EPSS Percentile 41.8%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

Details

CWE

CWE-79

Status published

Products (10)

siemens/desigo_pxm30-1_firmware < 02.20.126.11-41

siemens/desigo_pxm30.e_firmware < 02.20.126.11-41

siemens/desigo_pxm40-1_firmware < 02.20.126.11-41

siemens/desigo_pxm40.e_firmware < 02.20.126.11-41

siemens/desigo_pxm50-1_firmware < 02.20.126.11-41

siemens/desigo_pxm50.e_firmware < 02.20.126.11-41

siemens/pxg3.w100-1_firmware < 02.20.126.11-37

siemens/pxg3.w100-2_firmware < 02.20.126.11-41

siemens/pxg3.w200-1_firmware < 02.20.126.11-37

siemens/pxg3.w200-2_firmware < 02.20.126.11-41

Published Oct 11, 2022

Tracked Since Feb 18, 2026