CVE-2021-33710 is a vulnerability in Siemens Teamcenter Active Workspace
Published on July 13, 2021
A vulnerability has been identified in Teamcenter Active Workspace V4 (All versions < V4.3.9), Teamcenter Active Workspace V5.0 (All versions < V5.0.7), Teamcenter Active Workspace V5.1 (All versions < V5.1.4). A reflected cross-site scripting (XSS) vulnerability exists in the web interface of the affected devices that could allow an attacker to execute malicious JavaScript code by tricking users into accessing a malicious link.
Weakness Type
What is a XSS Vulnerability?
The software does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.
CVE-2021-33710 has been classified to as a XSS vulnerability or weakness.
Products Associated with CVE-2021-33710
Want to know whenever a new CVE is published for Siemens Teamcenter Active Workspace? stack.watch will email you.
Affected Versions
Siemens Teamcenter Active Workspace V4:- Version All versions < V4.3.9 is affected.
- Version All versions < V5.0.7 is affected.
- Version All versions < V5.1.4 is affected.
Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.