Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

Siemens SICAM P850 and SICAM P855

🗓️ 10 May 2022 00:00:00Reported by Industrial Control Systems Cyber Emergency Response TeamType 
ics
 ics🔗 www.cisa.gov👁 67 Views

Siemens SICAM P850 and SICAM P855 affected by multiple vulnerabilitie

Related
Refs
ReporterTitlePublishedViews
Family
ATTACKERKB		CVE-2022-29877
20 May 202213:15
attackerkb
BDU FSTEC		The vulnerability of Siemens SICAM P850 and Siemens SICAM P855 multifunctional diagnostic devices lies in the improper checking of POST request parameters. This allows a perpetrator to cause malfunctions during maintenance or execute arbitrary codes.
1 Jun 202200:00
bdu_fstec
BDU FSTEC		The vulnerability of Siemens SICAM P850 and Siemens SICAM P855 multifunctional measuring devices, which stems from the transmission of data in an open manner via the HTTP protocol, allows attackers to intercept traffic and disrupt the operation of the devices.
1 Jun 202200:00
bdu_fstec
BDU FSTEC		The vulnerability of Siemens SICAM P850 and Siemens SICAM P855 multifunctional measuring devices arises from incorrect validation of certain GET and POST requests. This allows a perpetrator to trigger a service failure or execute arbitrary code.
1 Jun 202200:00
bdu_fstec
BDU FSTEC		The vulnerability of Siemens SICAM P850 and Siemens SICAM P855 multifunctional measuring devices lies in the insufficient cleaning of user data in the GET request parameter, allowing attackers to perform cross-site scripting attacks.
3 Jun 202200:00
bdu_fstec
BDU FSTEC		The vulnerability of Siemens SICAM P850 and Siemens SICAM P855 multifunctional measuring devices lies in the lack of authentication for critical functions. This allows attackers to disclose internal configuration details of the web interface or alter network settings.
29 Jun 202200:00
bdu_fstec
Circl		CVE-2022-29873
20 May 202216:30
circl
Circl		CVE-2022-29874
20 May 202216:30
circl
Circl		CVE-2022-29877
20 May 202216:34
circl
CNNVD		Siemens SICAM 访问控制错误漏洞
12 May 202200:00
cnnvd
Rows per page

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
10 May 2022 00:00Current
8.3High risk
Vulners AI Score8.3
CVSS 27.5
CVSS 3.19.8
CVSS 49.3
EPSS0.03324
siemens sicam p850siemens sicam p855vulnerabilitiesremote exploitationcross-site scriptingauthentication bypassdenial-of-service
67