CVE-2016-8567

Name of the Vulnerable Software and Affected Versions Siemens SICAM PAS versions prior to 8.00

Description The issue is related to a factory account with hard-coded passwords in SICAM PAS installations. This could allow attackers to gain privileged access to the database over Port 2638/TCP. The vulnerability might be exploited by a remote attacker to obtain privileged access to the database.

Recommendations For versions prior to 8.00, update to version 8.00 or later to resolve the issue. As a temporary workaround, consider restricting access to Port 2638/TCP to minimize the risk of exploitation.