CVE-2022-29873

Name of the Vulnerable Software and Affected Versions SICAM P850 versions prior to V3.00 SICAM P855 versions prior to V3.00

Description A vulnerability has been identified in the affected devices, which do not properly validate parameters of certain GET and POST requests. This could allow an unauthenticated attacker to set the device to a denial of service state or to control the program counter and, thus, execute arbitrary code on the device.

Recommendations For SICAM P850 versions prior to V3.00, update to version V3.00 or later. For SICAM P855 versions prior to V3.00, update to version V3.00 or later. As a temporary workaround, consider restricting access to the affected devices to minimize the risk of exploitation.