Vulnerability Description
A vulnerability has been identified in SICAM P850 (All versions < V3.00), SICAM P850 (All versions < V3.00), SICAM P850 (All versions < V3.00), SICAM P850 (All versions < V3.00), SICAM P850 (All versions < V3.00), SICAM P850 (All versions < V3.00), SICAM P850 (All versions < V3.00), SICAM P850 (All versions < V3.00), SICAM P850 (All versions < V3.00), SICAM P850 (All versions < V3.00), SICAM P850 (All versions < V3.00), SICAM P850 (All versions < V3.00), SICAM P850 (All versions < V3.00), SICAM P850 (All versions < V3.00), SICAM P850 (All versions < V3.00), SICAM P850 (All versions < V3.00), SICAM P850 (All versions < V3.00), SICAM P850 (All versions < V3.00), SICAM P855 (All versions < V3.00), SICAM P855 (All versions < V3.00), SICAM P855 (All versions < V3.00), SICAM P855 (All versions < V3.00), SICAM P855 (All versions < V3.00), SICAM P855 (All versions < V3.00), SICAM P855 (All versions < V3.00), SICAM P855 (All versions < V3.00), SICAM P855 (All versions < V3.00), SICAM P855 (All versions < V3.00), SICAM P855 (All versions < V3.00), SICAM P855 (All versions < V3.00), SICAM P855 (All versions < V3.00), SICAM P855 (All versions < V3.00), SICAM P855 (All versions < V3.00), SICAM P855 (All versions < V3.00), SICAM P855 (All versions < V3.00), SICAM P855 (All versions < V3.00). Affected devices allow unauthenticated access to the web interface configuration area. This could allow an attacker to extract internal configuration details or to reconfigure network settings. However, the reconfigured settings cannot be activated unless the role of an authenticated administrator user.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Siemens | 7Kg8500-0Aa00-0Aa0 Firmware | < 3.00 |
| Siemens | 7Kg8500-0Aa00-0Aa0 | - |
| Siemens | 7Kg8500-0Aa00-2Aa0 Firmware | < 3.00 |
| Siemens | 7Kg8500-0Aa00-2Aa0 | - |
| Siemens | 7Kg8500-0Aa10-0Aa0 Firmware | < 3.00 |
| Siemens | 7Kg8500-0Aa10-0Aa0 | - |
| Siemens | 7Kg8500-0Aa10-2Aa0 Firmware | < 3.00 |
| Siemens | 7Kg8500-0Aa10-2Aa0 | - |
| Siemens | 7Kg8500-0Aa30-0Aa0 Firmware | < 3.00 |
| Siemens | 7Kg8500-0Aa30-0Aa0 | - |
| Siemens | 7Kg8500-0Aa30-2Aa0 Firmware | < 3.00 |
| Siemens | 7Kg8500-0Aa30-2Aa0 | - |
| Siemens | 7Kg8501-0Aa01-0Aa0 Firmware | < 3.00 |
| Siemens | 7Kg8501-0Aa01-0Aa0 | - |
| Siemens | 7Kg8501-0Aa01-2Aa0 Firmware | < 3.00 |
| Siemens | 7Kg8501-0Aa01-2Aa0 | - |
| Siemens | 7Kg8501-0Aa02-0Aa0 Firmware | < 3.00 |
| Siemens | 7Kg8501-0Aa02-0Aa0 | - |
| Siemens | 7Kg8501-0Aa02-2Aa0 Firmware | < 3.00 |
| Siemens | 7Kg8501-0Aa02-2Aa0 | - |
Related Weaknesses (CWE)
References
- https://cert-portal.siemens.com/productcert/pdf/ssa-165073.pdfPatchVendor Advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-165073.pdfPatchVendor Advisory
FAQ
What is CVE-2022-29877?
CVE-2022-29877 is a vulnerability with a CVSS score of 6.5 (MEDIUM). A vulnerability has been identified in SICAM P850 (All versions < V3.00), SICAM P850 (All versions < V3.00), SICAM P850 (All versions < V3.00), SICAM P850 (All versions < V3.00), SICAM P850 (All versi...
How severe is CVE-2022-29877?
CVE-2022-29877 has been rated MEDIUM with a CVSS base score of 6.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2022-29877?
Check the references section above for vendor advisories and patch information. Affected products include: Siemens 7Kg8500-0Aa00-0Aa0 Firmware, Siemens 7Kg8500-0Aa00-0Aa0, Siemens 7Kg8500-0Aa00-2Aa0 Firmware, Siemens 7Kg8500-0Aa00-2Aa0, Siemens 7Kg8500-0Aa10-0Aa0 Firmware.