all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

SSA-583634 V1.0: Command Injection Vulnerability in the CPCI85 Firmware of SICAM A8000 Devices

Add to bookmarks
Jan. 9, 2024, midnight |

Siemens ProductCERT Security Advisories cert-portal.siemens.com

The CPCI85 firmware of SICAM A8000 CP-8031 and CP-8050 is affected by a command injection vulnerability that could allow an authenticated remote attacker to inject commands that are executed on the device with root privileges during device startup.


Siemens has released new versions for the affected products and recommends to update to the latest versions.

attacker command command injection device devices firmware inject injection privileges products root sicam a8000 siemens ssa startup vulnerability

Visit resource

More from cert-portal.siemens.com / Siemens ProductCERT Security Advisories

SSA-923361 V1.0: MODEL File Parsing Vulnerability in Tecnomatix Plant Simulation before V2302.0011 6 days, 13 hours ago | cert-portal.siemens.com
application arbitrary code arbitrary code execution code +9
SSA-871704 V1.0: Multiple Vulnerabilities in SICAM Products 6 days, 13 hours ago | cert-portal.siemens.com
code code execution device escalation +14
SSA-925850 V1.0: Improper Access Control in Polarion ALM 6 days, 13 hours ago | cert-portal.siemens.com
access access control access controls apache +11
SSA-976324 V1.0: Multiple IGS File Parsing Vulnerabilities in PS/IGES Parasolid Translator Component before V27.1.215 6 days, 13 hours ago | cert-portal.siemens.com
application crash file files +6
SSA-953710 V1.0: Vulnerabilities in the Network Communication Stack in Desigo Fire Safety UL and Cerberus … 6 days, 13 hours ago | cert-portal.siemens.com
access attacker buffer buffer overflow +17
SSA-916916 V1.0: Security Vulnerabilities Fixed in RUGGEDCOM CROSSBOW V5.5 6 days, 13 hours ago | cert-portal.siemens.com
application arbitrary files attacker attacks +18
SSA-935500 V1.1 (Last Update: 2024-05-14): Denial of Service Vulnerability in FTP Server of Nucleus RTOS … 6 days, 13 hours ago | cert-portal.siemens.com
countermeasures fix fixes latest +6
SSA-962515 V1.0: Out of Bounds Read Vulnerability in Industrial Products 6 days, 13 hours ago | cert-portal.siemens.com
attacker blue bsod crash +13
SSA-661579 V1.0: Multiple File Parsing Vulnerabilities in Teamcenter Visualization and JT2Go 6 days, 13 hours ago | cert-portal.siemens.com
application crash file files +7

Jobs in InfoSec / Cybersecurity

Post a Job Search Talent

Information Security Engineers

@ D. E. Shaw Research | New York City
View on infosec-jobs.com

Technology Security Analyst

@ Halton Region | Oakville, Ontario, Canada
View on infosec-jobs.com

Senior Cyber Security Analyst

@ Valley Water | San Jose, CA
View on infosec-jobs.com

Information Technology Security Engineer

@ Plexus Worldwide | Scottsdale, Arizona, United States
View on infosec-jobs.com

Principal Email Security Researcher (Cortex XDR)

@ Palo Alto Networks | Tel Aviv-Yafo, Israel
View on infosec-jobs.com

Lead Security Engineer - Cloud Security, AWS

@ JPMorgan Chase & Co. | Bengaluru, Karnataka, India
View on infosec-jobs.com