SSA-731916 V1.0: Multiple Vulnerabilities in CPCI85 Firmware of SICAM A8000 Devices

June 13, 2023, midnight |

Siemens ProductCERT Security Advisories cert-portal.siemens.com

The CPCI85 firmware of SICAM A8000 CP-8031 and CP-8050 is affected by multiple vulnerabilities such as authenticated remote command injection, exposure of serial UART interface, and hard coded credentials (for UART login).

Siemens has released updates for the affected products and recommends to update to the latest versions.

command command injection credentials devices exposure firmware hard hard coded injection interface latest login products siemens ssa update updates vulnerabilities

Visit resource

More from cert-portal.siemens.com / Siemens ProductCERT Security Advisories

SSA-750274 V1.0: Impact of CVE-2024-3400 on RUGGEDCOM APE1808 devices configured with Palo Alto Networks Virtual … 1 week, 6 days ago | cert-portal.siemens.com

addresses advisory alto countermeasures +22

SSA-222019 V1.0: X_T File Parsing Vulnerabilities in Parasolid 3 weeks, 2 days ago | cert-portal.siemens.com

application applications attacker code +12

SSA-885980 V1.0: Multiple Vulnerabilities in Scalance W1750D 3 weeks, 2 days ago | cert-portal.siemens.com

attacker buffer buffer overflow code +16

SSA-822518 V1.0: Multiple Vulnerabilities in Palo Alto Networks Virtual NGFW before V11.0.1 on RUGGEDCOM APE1808 … 3 weeks, 2 days ago | cert-portal.siemens.com

advisory alto countermeasures customers +18

SSA-455250 V1.0: Multiple Vulnerabilities in Palo Alto Networks Virtual NGFW on RUGGEDCOM APE1808 devices 3 weeks, 2 days ago | cert-portal.siemens.com

advisory alto countermeasures customers +18

SSA-265688 V1.0: Vulnerabilities in the additional GNU/Linux subsystem of the SIMATIC S7-1500 TM MFP V1.1 3 weeks, 2 days ago | cert-portal.siemens.com

countermeasures fix fixes gnu +7

SSA-730482 V1.0: Denial of Service Vulnerability in SIMATIC WinCC 3 weeks, 2 days ago | cert-portal.siemens.com

attacker box denial of service dialog +14

SSA-556635 V1.0: Multiple Vulnerabilities in Telecontrol Server Basic before V3.1.2.0 3 weeks, 2 days ago | cert-portal.siemens.com

1.2.0 basic fixes server +4

SSA-128433 V1.0: Multiple Vulnerabilities in SINEC NMS before V2.0 SP2 3 weeks, 2 days ago | cert-portal.siemens.com

latest nms siemens sinec +4

Social Engineer For Reverse Engineering Exploit Study

@ Independent study | Remote

View on infosec-jobs.com

Senior Software Engineer, Security

@ Niantic | Zürich, Switzerland

View on infosec-jobs.com

Consultant expert en sécurité des systèmes industriels (H/F)

@ Devoteam | Levallois-Perret, France

View on infosec-jobs.com

Cybersecurity Analyst

@ Bally's | Providence, Rhode Island, United States

View on infosec-jobs.com

Digital Trust Cyber Defense Executive

@ KPMG India | Gurgaon, Haryana, India

View on infosec-jobs.com

Program Manager - Cybersecurity Assessment Services

@ TestPros | Remote (and DMV), DC

View on infosec-jobs.com

View more jobs

all InfoSec news

SSA-731916 V1.0: Multiple Vulnerabilities in CPCI85 Firmware of SICAM A8000 Devices

More from cert-portal.siemens.com / Siemens ProductCERT Security Advisories

Jobs in InfoSec / Cybersecurity

Social Engineer For Reverse Engineering Exploit Study

Senior Software Engineer, Security

Consultant expert en sécurité des systèmes industriels (H/F)

Cybersecurity Analyst

Digital Trust Cyber Defense Executive

Program Manager - Cybersecurity Assessment Services