Published: 20/05/2022 Updated: 26/05/2022

CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10

CVSS v3 Base Score: 9.8 | Impact Score: 5.9 | Exploitability Score: 3.9

VMScore: 668

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

A vulnerability has been identified in SICAM P850 (All versions < V3.00), SICAM P850 (All versions < V3.00), SICAM P850 (All versions < V3.00), SICAM P850 (All versions < V3.00), SICAM P850 (All versions < V3.00), SICAM P850 (All versions < V3.00), SICAM P850 (All versions < V3.00), SICAM P850 (All versions < V3.00), SICAM P850 (All versions < V3.00), SICAM P850 (All versions < V3.00), SICAM P850 (All versions < V3.00), SICAM P850 (All versions < V3.00), SICAM P850 (All versions < V3.00), SICAM P850 (All versions < V3.00), SICAM P850 (All versions < V3.00), SICAM P850 (All versions < V3.00), SICAM P850 (All versions < V3.00), SICAM P850 (All versions < V3.00), SICAM P855 (All versions < V3.00), SICAM P855 (All versions < V3.00), SICAM P855 (All versions < V3.00), SICAM P855 (All versions < V3.00), SICAM P855 (All versions < V3.00), SICAM P855 (All versions < V3.00), SICAM P855 (All versions < V3.00), SICAM P855 (All versions < V3.00), SICAM P855 (All versions < V3.00), SICAM P855 (All versions < V3.00), SICAM P855 (All versions < V3.00), SICAM P855 (All versions < V3.00), SICAM P855 (All versions < V3.00), SICAM P855 (All versions < V3.00), SICAM P855 (All versions < V3.00), SICAM P855 (All versions < V3.00), SICAM P855 (All versions < V3.00), SICAM P855 (All versions < V3.00). Affected devices do not properly validate parameters of certain GET and POST requests. This could allow an unauthenticated malicious user to set the device to a denial of service state or to control the program counter and, thus, execute arbitrary code on the device.

Vulnerable Product	Search on Vulmon	Subscribe to Product
siemens 7kg8500-0aa00-0aa0 firmware
siemens 7kg8500-0aa00-2aa0 firmware
siemens 7kg8500-0aa10-0aa0 firmware
siemens 7kg8500-0aa10-2aa0 firmware
siemens 7kg8500-0aa30-0aa0 firmware
siemens 7kg8500-0aa30-2aa0 firmware
siemens 7kg8501-0aa01-0aa0 firmware
siemens 7kg8501-0aa01-2aa0 firmware
siemens 7kg8501-0aa02-0aa0 firmware
siemens 7kg8501-0aa02-2aa0 firmware
siemens 7kg8501-0aa11-0aa0 firmware
siemens 7kg8501-0aa11-2aa0 firmware
siemens 7kg8501-0aa12-0aa0 firmware
siemens 7kg8501-0aa12-2aa0 firmware
siemens 7kg8501-0aa31-0aa0 firmware
siemens 7kg8501-0aa31-2aa0 firmware
siemens 7kg8501-0aa32-0aa0 firmware
siemens 7kg8501-0aa32-2aa0 firmware
siemens 7kg8550-0aa00-0aa0 firmware
siemens 7kg8550-0aa00-2aa0 firmware
siemens 7kg8550-0aa10-0aa0 firmware
siemens 7kg8550-0aa10-2aa0 firmware
siemens 7kg8550-0aa30-0aa0 firmware
siemens 7kg8550-0aa30-2aa0 firmware
siemens 7kg8551-0aa01-0aa0 firmware
siemens 7kg8551-0aa01-2aa0 firmware
siemens 7kg8551-0aa02-0aa0 firmware
siemens 7kg8551-0aa02-2aa0 firmware
siemens 7kg8551-0aa11-0aa0 firmware
siemens 7kg8551-0aa11-2aa0 firmware
siemens 7kg8551-0aa12-0aa0 firmware
siemens 7kg8551-0aa12-2aa0 firmware
siemens 7kg8551-0aa31-0aa0 firmware
siemens 7kg8551-0aa31-2aa0 firmware
siemens 7kg8551-0aa32-0aa0 firmware
siemens 7kg8551-0aa32-2aa0 firmware

Critical Infrastructure Sectors: Energy

NVD-CWE-Other https://cert-portal.siemens.com/productcert/pdf/ssa-165073.pdf https://nvd.nist.gov https://www.cisa.gov/uscert/ics/advisories/icsa-22-132-07

CVE-2022-29873

Vulnerability Summary

Vulnerability Trend

ICS Advisories

References

Vulmon Search

About

Products

Connect