Cyber Resilience

CVE-2022-40181

High

Published: 11 October 2022

Published
11 October 2022
Modified
21 November 2024
KEV Added
Patch
CVSS Score v3.1 8.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H
EPSS Score 0.0070 72.6th percentile
Risk Priority 17 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2022-40181 is a high-severity Improper Neutralization of Encoded URI Schemes in a Web Page (CWE-84) vulnerability in Siemens Desigo Pxm30-1 Firmware. Its CVSS base score is 8.3 (High).

Operationally, ranked in the top 27.4% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog.

EU & UK References

Vulnerability details

A vulnerability has been identified in Desigo PXM30-1 (All versions < V02.20.126.11-41), Desigo PXM30.E (All versions < V02.20.126.11-41), Desigo PXM40-1 (All versions < V02.20.126.11-41), Desigo PXM40.E (All versions < V02.20.126.11-41), Desigo PXM50-1 (All versions < V02.20.126.11-41), Desigo PXM50.E (All versions…

more

< V02.20.126.11-41), PXG3.W100-1 (All versions < V02.20.126.11-37), PXG3.W100-2 (All versions < V02.20.126.11-41), PXG3.W200-1 (All versions < V02.20.126.11-37), PXG3.W200-2 (All versions < V02.20.126.11-41). The device embedded browser does not prevent interaction with alternative URI schemes when redirected to corresponding resources by web application code. By setting the homepage URI, the favorite URIs, or redirecting embedded browser users via JavaScript code to alternative scheme resources, a remote low privileged attacker can perform a range of attacks against the device, such as read arbitrary files on the filesystem, execute arbitrary JavaScript code in order to steal or manipulate the information on the screen, or trigger denial of service conditions.

CWE(s)

Related Threats

No named actor attribution yet. ATT&CK technique mapping in progress for this CVE.

Affected Assets

siemens
desigo pxm30-1 firmware
≤ 02.20.126.11-41
siemens
desigo pxm30.e firmware
≤ 02.20.126.11-41
siemens
desigo pxm40-1 firmware
≤ 02.20.126.11-41
siemens
desigo pxm40.e firmware
≤ 02.20.126.11-41
siemens
desigo pxm50-1 firmware
≤ 02.20.126.11-41
siemens
desigo pxm50.e firmware
≤ 02.20.126.11-41
siemens
pxg3.w100-1 firmware
≤ 02.20.126.11-37
siemens
pxg3.w100-2 firmware
≤ 02.20.126.11-41
siemens
pxg3.w200-1 firmware
≤ 02.20.126.11-37
siemens
pxg3.w200-2 firmware
≤ 02.20.126.11-41

Mitigating Controls

Likely Mitigating Controls AI

Per-CVE control mapping for this CVE has not run yet; the list below is derived from the weakness types (CWEs) cited in the NVD entry.

addresses: CWE-79

Penetration testing submits XSS payloads to web applications, detecting cross-site scripting flaws for subsequent remediation.

addresses: CWE-79

Validates web inputs to reject script-related content that could produce XSS.

addresses: CWE-79

Output validation against expected content can reject or sanitize script content in generated web pages, reducing XSS exploitability.

References