OTPulse
FeedAboutContact

Siemens Spectrum Power 5

Monitor6.1ICS-CERT ICSA-20-070-03Mar 10, 2020
Attack VectorNetwork
Auth RequiredNone
ComplexityLow
User InteractionRequired
Summary

Siemens Spectrum Power 5 contains a reflected cross-site scripting (XSS) vulnerability in the web interface (CWE-80). An attacker could craft a malicious link that, when clicked by a logged-in operator, executes arbitrary JavaScript in the browser session. This could allow unauthorized access to grid monitoring data or control functions. The vulnerability affects all versions prior to 5.50_HF02. No security update is currently available; vendors are recommended to implement network controls and operational resilience measures per grid regulations.

What this means
What could happen
An attacker could conduct a reflected cross-site scripting (XSS) attack via the web interface, potentially stealing session credentials or manipulating grid control operations viewed by operators. This could compromise situational awareness or allow unauthorized changes to protection settings in a power distribution system.
Who's at risk
Transmission System Operators (TSOs) and Distribution System Operators (DSOs) using Siemens Spectrum Power 5 for grid monitoring and secondary protection coordination are affected. This impacts anyone managing power distribution networks, substations, or grid control centers that rely on this SCADA visualization and control platform.
How it could be exploited
An attacker crafts a malicious URL containing JavaScript code and sends it to a power grid operator (TSO/DSO staff). When the operator clicks the link and views Spectrum Power 5 through the web interface, the script executes in their browser session, allowing the attacker to steal session tokens or perform actions on their behalf against the SCADA system.
Prerequisites
  • User interaction required: operator must click a malicious link
  • Network access to Spectrum Power 5 web interface (typically port 80/443 on internal network)
  • Operator must be logged into the application at time of click
remotely exploitableuser interaction required (reduced but not eliminated risk)no patch available for affected versionsaffects critical infrastructure (power grid safety and control)
Exploitability
Low exploit probability (EPSS 0.4%)
Affected products (1)
ProductAffected VersionsFix Status
Spectrum Power™ 5: All<v5.50 HF02v5.50_HF02 or later
Remediation & Mitigation
0/5
Do now
0/2
HARDENINGImplement network segmentation to restrict access to Spectrum Power 5 web interface to authorized engineering and operations workstations only
WORKAROUNDDeploy a firewall or WAF (Web Application Firewall) rule to block common XSS attack patterns targeting the Spectrum Power 5 web interface
Schedule — requires maintenance window
0/1

Patching may require device reboot — plan for process interruption

HOTFIXUpgrade Spectrum Power 5 to version 5.50_HF02 or later when available from Siemens
Long-term hardening
0/2
HARDENINGTrain operators to avoid clicking links from untrusted sources that reference Spectrum Power 5; use direct bookmarks or IP entry instead
HARDENINGImplement multi-level redundant secondary protection schemes per grid resilience regulations to reduce dependence on single control points
View full CISA ICS-CERT advisory
↑↓ Navigate · Esc Close
API: /api/v1/advisories/2cc02171-4bbb-4d41-aac0-9b44de835aed
Siemens Spectrum Power 5 | CVSS 6.1 - OTPulse