Vulnerabilities in the Web Server of SICAM P850 and SICAM P855 Devices

Act Now9.9SSA-572005Oct 11, 2022

Attack VectorNetwork

Auth RequiredLow

ComplexityLow

User InteractionNone needed

Summary

Session fixation and multiple incorrect parameter parsing vulnerabilities in the web server of SICAM P850 and SICAM P855 devices could allow an authenticated attacker to execute remote code. The vulnerabilities are classified as CWE-384 (session fixation), CWE-141 (improper neutralization), and CWE-20 (improper input validation). Siemens has released firmware updates addressing these issues.

What this means

What could happen

An attacker with valid credentials could exploit session fixation and parameter parsing flaws to gain unauthorized control of the SICAM P850/P855 device web interface, potentially executing commands that alter power system monitoring, metering, or communication settings.

Who's at risk

Utility and industrial operators responsible for electrical grid monitoring and control systems. Specifically affects SICAM P850 and P855 substation automation and power management devices used in SCADA environments for monitoring metering data, power quality, and grid communications.

How it could be exploited

An attacker with credentials accesses the web server, exploits session fixation to impersonate another user session, then leverages incorrect parameter parsing to inject malicious commands. This could allow remote code execution on the device and compromise SCADA/EMS functions.

Prerequisites

Valid user account credentials for the SICAM web interface
Network access to the web server port
Device running firmware version below V3.10

remotely exploitablerequires valid credentialsaffects SCADA/grid monitoring systemshigh CVSS score (9.9)

Exploitability

Moderate exploit probability (EPSS 1.8%)

Affected products (2)

2 with fix

ProductAffected VersionsFix Status

SICAM P850< V3.103.10

SICAM P855< V3.103.10

Remediation & Mitigation

0/1

Schedule — requires maintenance window

0/1

Patching may require device reboot — plan for process interruption

SICAM P850

HOTFIXUpdate SICAM P850 and P855 devices to firmware version V3.10 or later

CVEs (5)

CVE-2022-40226 CVE-2022-41665 CVE-2022-43439 CVE-2022-43545 CVE-2022-43546

View full Siemens ProductCERT advisory

↑↓ Navigate · Esc Close

API: /api/v1/advisories/6d8f82fe-3e58-4835-b45a-95f58b881119