SSA-604937 (Last Update: 2020-08-11): Multiple Web Server Vulnerabilities in Opcenter Execution Core

Published

2020-08-11 00:00:00 UTC

Summary

Opcenter Execution Core (formerly known as Camstar Enterprise Platform) contains a Cross-Site-Scripting, an SQL injection and an information disclosure vulnerability.

Siemens recommends to update to the latest version of Opcenter Execution Core that fixes two vulnerabilities and recommends specific countermeasures for the remaining vulnerability.

Source

https://cert-portal.siemens.com/productcert/pdf/ssa-604937.pdf