What is the severity of CVE-2011-4511?

CVE-2011-4511 has been assigned a medium severity rating due to its potential to enable cross-site scripting attacks.

How do I fix CVE-2011-4511?

To fix CVE-2011-4511, users should apply the latest security updates provided by Siemens for affected versions of their software.

What versions of Siemens software are affected by CVE-2011-4511?

CVE-2011-4511 affects Siemens WinCC flexible versions 2004, 2005, 2007, 2008 before SP3, and WinCC V11 before SP2 Update 1, among others.

What type of vulnerability is CVE-2011-4511?

CVE-2011-4511 is classified as a cross-site scripting (XSS) vulnerability.

Are there any known exploits for CVE-2011-4511?

As of now, there are no publicly known exploits specifically targeting CVE-2011-4511, but the vulnerability still poses a risk if unpatched.

Vulnerability/
CVE-2011-4511

medium

4.3

CWE

3/2/2012

3/10/2022

7/8/2024

CVE-2011-4511: XSS

First published: Fri Feb 03 2012(Updated: )

Cross-site scripting (XSS) vulnerability in the HMI web server in Siemens WinCC flexible 2004, 2005, 2007, and 2008 before SP3; WinCC V11 (aka TIA portal) before SP2 Update 1; the TP, OP, MP, Comfort Panels, and Mobile Panels SIMATIC HMI panels; WinCC V11 Runtime Advanced; and WinCC flexible Runtime allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2011-4510.

Credit: cret@cert.org

Affected Software	Affected Version	How to fix
Siemens SIMATIC WinCC flexible 2008	=2004
Siemens SIMATIC WinCC flexible 2008	=2005
Siemens SIMATIC WinCC flexible 2008	=2007
Siemens SIMATIC WinCC flexible 2008	=2008
Siemens SIMATIC WinCC flexible 2008	=2008-sp1
Siemens SIMATIC WinCC flexible 2008	=2008-sp2
Siemens WinCC	<=v11
Siemens WinCC	=v11
Siemens WinCC	=v11-sp1
Siemens SIMATIC HMI Panels	=comfort_panels
Siemens SIMATIC HMI Panels	=mobile_panels
Siemens SIMATIC HMI Panels	=mp
Siemens SIMATIC HMI Panels	=op
Siemens SIMATIC HMI Panels	=tp
Siemens SIMATIC WinCC Runtime Advanced	=v11
Siemens SIMATIC WinCC flexible Runtime

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2011-4511?
CVE-2011-4511 has been assigned a medium severity rating due to its potential to enable cross-site scripting attacks.
How do I fix CVE-2011-4511?
To fix CVE-2011-4511, users should apply the latest security updates provided by Siemens for affected versions of their software.
What versions of Siemens software are affected by CVE-2011-4511?
CVE-2011-4511 affects Siemens WinCC flexible versions 2004, 2005, 2007, 2008 before SP3, and WinCC V11 before SP2 Update 1, among others.
What type of vulnerability is CVE-2011-4511?
CVE-2011-4511 is classified as a cross-site scripting (XSS) vulnerability.
Are there any known exploits for CVE-2011-4511?
As of now, there are no publicly known exploits specifically targeting CVE-2011-4511, but the vulnerability still poses a risk if unpatched.

agent/references
agent/first-publish-date
agent/type
collector/mitre-cve
source/MITRE
agent/author
agent/last-modified-date
agent/severity
agent/description
agent/event
agent/source
agent/weakness
agent/tags
agent/softwarecombine
collector/nvd-index
agent/software-canonical-lookup-request
collector/nvd-historical
vendor/siemens
canonical/siemens simatic wincc flexible 2008
version/siemens simatic wincc flexible 2008/2004
version/siemens simatic wincc flexible 2008/2005
version/siemens simatic wincc flexible 2008/2007
version/siemens simatic wincc flexible 2008/2008
version/siemens simatic wincc flexible 2008/2008-sp1
version/siemens simatic wincc flexible 2008/2008-sp2
canonical/siemens wincc
version/siemens wincc/v11
version/siemens wincc/v11-sp1
canonical/siemens simatic hmi panels
version/siemens simatic hmi panels/comfort_panels
version/siemens simatic hmi panels/mobile_panels
version/siemens simatic hmi panels/mp
version/siemens simatic hmi panels/op
version/siemens simatic hmi panels/tp
canonical/siemens simatic wincc runtime advanced
version/siemens simatic wincc runtime advanced/v11
canonical/siemens simatic wincc flexible runtime

Frequently Asked Questions

What is the severity of CVE-2011-4511?
CVE-2011-4511 has been assigned a medium severity rating due to its potential to enable cross-site scripting attacks.
How do I fix CVE-2011-4511?
To fix CVE-2011-4511, users should apply the latest security updates provided by Siemens for affected versions of their software.
What versions of Siemens software are affected by CVE-2011-4511?
CVE-2011-4511 affects Siemens WinCC flexible versions 2004, 2005, 2007, 2008 before SP3, and WinCC V11 before SP2 Update 1, among others.
What type of vulnerability is CVE-2011-4511?
CVE-2011-4511 is classified as a cross-site scripting (XSS) vulnerability.
Are there any known exploits for CVE-2011-4511?
As of now, there are no publicly known exploits specifically targeting CVE-2011-4511, but the vulnerability still poses a risk if unpatched.

CVE-2011-4511: XSS

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2011-4511?

How do I fix CVE-2011-4511?

What versions of Siemens software are affected by CVE-2011-4511?

What type of vulnerability is CVE-2011-4511?

Are there any known exploits for CVE-2011-4511?

Company

Resources

Contact

Frequently Asked Questions

What is the severity of CVE-2011-4511?

How do I fix CVE-2011-4511?

What versions of Siemens software are affected by CVE-2011-4511?

What type of vulnerability is CVE-2011-4511?

Are there any known exploits for CVE-2011-4511?