Siemens SIMATIC S7 PLCs Cross-Site Scripting Vulnerability via Firmware Update Filenames

A cross-site scripting vulnerability has been identified in Siemens SIMATIC S7 PLCs. Affected devices fail to properly validate and sanitize filenames on the Firmware Update page. This flaw could enable a remote attacker to manipulate the user into selecting a modified firmware file for upload. Consequently, malicious JavaScript could be executed within the context of the authenticated user's session, potentially leading to session hijacking or credential theft. This vulnerability affects several different versions and/or ranges.

Impact

Exploitation of this vulnerability allows for cross-site scripting, where an attacker can inject malicious scripts that are executed in the context of the user's session.

Remediation

Siemens recommends restricting access to the 'firmware update' function right to instructed personnel. For products where fixes are not yet available, follow the general security recommendations provided by Siemens.