CVE-2023-46098 is a vulnerability in Siemens Simatic Pcs Neo
Published on November 14, 2023

A vulnerability has been identified in SIMATIC PCS neo (All versions < V4.1). When accessing the Information Server from affected products, the products use an overly permissive CORS policy. This could allow an attacker to trick a legitimate user to trigger unwanted behavior.

Vendor Advisory NVD

Vulnerability Analysis

CVE-2023-46098 is exploitable with network access, requires user interaction. This vulnerability is considered to have a low attack complexity. It has an exploitability score of 2.8 out of four. The potential impact of an exploit of this vulnerability is considered to be very high.

Products Associated with CVE-2023-46098

You can be notified by stack.watch whenever vulnerabilities like CVE-2023-46098 are published in these products:

Siemens Simatic Pcs Neo

What versions of Simatic Pcs Neo are vulnerable to CVE-2023-46098?

Siemens Simatic Pcs Neo Fixed in Version 4.1

CVE-2023-46098 is a vulnerability in Siemens Simatic Pcs NeoPublished on November 14, 2023

Vulnerability Analysis

Products Associated with CVE-2023-46098

What versions of Simatic Pcs Neo are vulnerable to CVE-2023-46098?

CVE-2023-46098 is a vulnerability in Siemens Simatic Pcs Neo
Published on November 14, 2023