PT-2022-2736 · Siemens · Siemens Sicam P850+1

Published

2022-04-28

Updated

2022-05-26

CVE-2022-29872

CVSS v2.0

High

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Siemens SICAM P850 versions prior to V3.00 Siemens SICAM P855 versions prior to V3.00

Description The issue is related to incorrect validation of parameters in POST requests. This could allow a remote attacker to cause a denial of service or execute arbitrary code on the device.

Recommendations For Siemens SICAM P850 versions prior to V3.00, update to version V3.00 or later. For Siemens SICAM P855 versions prior to V3.00, update to version V3.00 or later.

Fix

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-20CWE-141

Related Identifiers

BDU:2022-03242

CVE-2022-29872

Affected Products

Siemens Sicam P850

Siemens Sicam P855

PT-2022-2736 · Siemens · Siemens Sicam P850+1

CVE-2022-29872

Weakness Enumeration

Related Identifiers

Affected Products

References · 9