Multiple Vulnerabilities in SICAM A8000

Act Now9.9SSA-324998Jan 11, 2022

Attack VectorNetwork

Auth RequiredLow

ComplexityLow

User InteractionNone needed

Summary

SICAM A8000 devices contain two vulnerabilities: (1) a privileged user can enable a debug port with hardcoded default credentials, and (2) unauthenticated access to historical log files is possible. The vulnerabilities affect CP-8000, CP-8021, and CP-8022 master modules in versions prior to 16.20. Siemens has released updates to address both issues.

What this means

What could happen

An attacker with engineering credentials could enable a debug port using hardcoded credentials to gain remote access to the device. Additionally, an unauthenticated attacker could access historical log files containing sensitive operational data from SICAM A8000 devices.

Who's at risk

Operators of Siemens SICAM A8000 substation automation systems (particularly those using CP-8000, CP-8021, or CP-8022 master modules) need to address these vulnerabilities. These devices are critical in electric utility SCADA and protection relay systems where they manage communication between substations and control centers.

How it could be exploited

An attacker with valid engineering workstation credentials could remotely connect to the SICAM A8000, enable the debug port with default hardcoded credentials, and then use those credentials to execute commands on the device. Separately, an unauthenticated attacker could access the device over the network and retrieve previously created log files that may contain sensitive information about device configuration or operation.

Prerequisites

Valid engineering workstation credentials for the first vulnerability
Network access to the SICAM A8000 device
Knowledge of the hardcoded debug port credentials

Remotely exploitableDefault credentialsAffects power system communication infrastructurePrivileged access required for first vulnerabilityNo authentication required for second vulnerability

Exploitability

Low exploit probability (EPSS 0.6%)

Affected products (4)

4 with fix

ProductAffected VersionsFix Status

CP-8000 MASTER MODULE WITH I/O -25/+70°C< V16.2016.20

CP-8000 MASTER MODULE WITH I/O -40/+70°C< V16.2016.20

CP-8021 MASTER MODULE (6MF2802-1AA00)< V16.2016.20

CP-8022 MASTER MODULE WITH GPRS (6MF2802-2AA00)< V16.2016.20

Remediation & Mitigation

0/1

Schedule — requires maintenance window

0/1

Patching may require device reboot — plan for process interruption

HOTFIXUpdate SICAM A8000 Master Modules (CP-8000, CP-8021, CP-8022) to firmware version 16.20 or later

CVEs (2)

CVE-2021-45033 CVE-2021-45034

View full Siemens ProductCERT advisory

↑↓ Navigate · Esc Close

API: /api/v1/advisories/109a8611-707f-4a96-b5d5-0abbd9b68178