A vulnerability has been identified in Teamcenter Active Workspace V5.2 (All versions < V5.2.9), Teamcenter Active Workspace V6.0 (All versions < V6.0.3). A reflected cross-site scripting (XSS) vulnerability exists in the web interface of the affected application that could allow an attacker to execute malicious code by tricking users into accessing a malicious link.
References
Link | Resource |
---|---|
https://cert-portal.siemens.com/productcert/pdf/ssa-401167.pdf | Patch Vendor Advisory |
Configurations
Configuration 1 (hide)
|
Information
Published : 2022-06-14 03:15
Updated : 2022-06-22 10:49
NVD link : CVE-2022-32145
Mitre link : CVE-2022-32145
JSON object : View
CWE
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Products Affected
siemens
- teamcenter_active_workspace