{ "document": { "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Disclosure is not limited. (TLPv2: TLP:CLEAR)", "tlp": { "label": "WHITE" } }, "lang": "en", "notes": [ { "category": "summary", "text": "The web server on SIMATIC S7-1200 CPU V2/V3 Before V3.0.2 contains a cross-site scripting (XSS) vulnerability that could allow remote attackers to inject arbitrary web script or HTML via a crafted URI.\n\nSiemens has released a new version for SIMATIC S7-1200 CPU V3 family (incl. SIPLUS variants) and recommends to update to the latest version. Siemens recommends specific countermeasures for products where fixes are not, or not yet available.", "title": "Summary" }, { "category": "general", "text": "As a general security measure, Siemens strongly recommends to protect network access to devices with appropriate mechanisms. In order to operate the devices in a protected IT environment, Siemens recommends to configure the environment according to Siemens' operational guidelines for Industrial Security (Download: https://www.siemens.com/cert/operational-guidelines-industrial-security), and to follow the recommendations in the product manuals.\nAdditional information on Industrial Security by Siemens can be found at: https://www.siemens.com/industrialsecurity", "title": "General Recommendations" }, { "category": "general", "text": "For further inquiries on security vulnerabilities in Siemens products and solutions, please contact the Siemens ProductCERT: https://www.siemens.com/cert/advisories", "title": "Additional Resources" }, { "category": "legal_disclaimer", "text": "The use of Siemens Security Advisories is subject to the terms and conditions listed on: https://www.siemens.com/productcert/terms-of-use.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "productcert@siemens.com", "name": "Siemens ProductCERT", "namespace": "https://www.siemens.com" }, "references": [ { "category": "self", "summary": "SSA-279823: Cross-Site Scripting Vulnerability in SIMATIC S7-1200 CPU V2/V3 Before V3.0.2 - HTML Version", "url": "https://cert-portal.siemens.com/productcert/html/ssa-279823.html" }, { "category": "self", "summary": "SSA-279823: Cross-Site Scripting Vulnerability in SIMATIC S7-1200 CPU V2/V3 Before V3.0.2 - CSAF Version", "url": "https://cert-portal.siemens.com/productcert/csaf/ssa-279823.json" } ], "title": "SSA-279823: Cross-Site Scripting Vulnerability in SIMATIC S7-1200 CPU V2/V3 Before V3.0.2", "tracking": { "current_release_date": "2025-10-14T00:00:00Z", "generator": { "engine": { "name": "Siemens ProductCERT CSAF Generator", "version": "1" } }, "id": "SSA-279823", "initial_release_date": "2012-10-08T00:00:00Z", "revision_history": [ { "date": "2012-10-08T00:00:00Z", "legacy_version": "1.0", "number": "1", "summary": "Publication Date" }, { "date": "2020-02-10T00:00:00Z", "legacy_version": "1.1", "number": "2", "summary": "SIPLUS devices now explicitly mentioned in the list of affected products" }, { "date": "2025-10-14T00:00:00Z", "legacy_version": "1.2", "number": "3", "summary": "Used CVE ID (CVE-2012-3040) instead of the deprecated SVE ID (SVE-2012-0004); Corrected CVSS vector of CVE-2012-3040; Updated SSA to current data model and support of csaf" } ], "status": "interim", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_version_range", "name": "vers:all/*", "product": { "name": "SIMATIC S7-1200 CPU V2 family (incl. SIPLUS variants)", "product_id": "1" } } ], "category": "product_name", "name": "SIMATIC S7-1200 CPU V2 family (incl. SIPLUS variants)" }, { "branches": [ { "category": "product_version_range", "name": "vers:intdot/<3.0.2", "product": { "name": "SIMATIC S7-1200 CPU V3 family (incl. SIPLUS variants)", "product_id": "2" } } ], "category": "product_name", "name": "SIMATIC S7-1200 CPU V3 family (incl. SIPLUS variants)" } ], "category": "vendor", "name": "Siemens" } ] }, "vulnerabilities": [ { "cve": "CVE-2012-3040", "cwe": { "id": "CWE-80", "name": "Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS)" }, "notes": [ { "category": "summary", "text": "The web server on affected devices contains a cross-site scripting (XSS) vulnerability that could allow remote attackers to inject arbitrary web script or HTML via a crafted URI.", "title": "Summary" } ], "product_status": { "known_affected": [ "1", "2" ] }, "remediations": [ { "category": "mitigation", "details": "Disable JavaScript within the web browser used to access the web server of the affected products", "product_ids": [ "1", "2" ] }, { "category": "mitigation", "details": "Utilize a modern web browser with integrated XSS filtering mechanisms", "product_ids": [ "1", "2" ] }, { "category": "mitigation", "details": "Deactivate the web server if not required. The web server is disabled by default.", "product_ids": [ "1", "2" ] }, { "category": "no_fix_planned", "details": "Currently no fix is planned", "product_ids": [ "1" ] }, { "category": "vendor_fix", "details": "Update to V3.0.2 or later version", "product_ids": [ "2" ] } ], "scores": [ { "cvss_v3": { "baseScore": 9.6, "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "1", "2" ] } ], "title": "CVE-2012-3040" } ] }