cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2022-44731,https://securityvulnerability.io/vulnerability/CVE-2022-44731,Injection Flaw in SIMATIC WinCC OA from Siemens,"A critical vulnerability has been detected in various versions of Siemens' SIMATIC WinCC OA. This flaw permits authenticated remote attackers to inject custom arguments into the Ultralight Client backend application through the web interface. If exploited, it can allow attackers to manipulate application behavior, including opening unauthorized panels or initiating scripts with the attacker's credentials, posing serious risks to operational integrity and data security.",Siemens,"Simatic Wincc Oa V3.15,Simatic Wincc Oa V3.16,Simatic Wincc Oa V3.17,Simatic Wincc Oa V3.18",5.4,MEDIUM,0.0008200000156648457,false,,false,false,false,,false,false,2022-12-13T00:00:00.000Z,0