Firmware Vulnerability in SICAM Products by Siemens
CVE-2020-10044

7.5HIGH

Key Information:

Vendor: Siemens
Status: Sicam Mmu; Sicam Sgu; Sicam T
Vendor: CVE Published:; 14 July 2020

Summary

A security vulnerability has been detected in Schneider Electric's SICAM product line, affecting SICAM MMU devices with versions below V2.05, SICAM SGU devices across all versions, and SICAM T devices with versions below V2.18. This flaw allows unauthorized attackers who have network access to deploy specially crafted firmware onto the affected devices, potentially compromising their integrity and functionality. Users are advised to upgrade their systems to the latest versions to mitigate this risk.

Affected Version(s)

SICAM MMU All versions < V2.05

SICAM SGU All versions

SICAM T All versions < V2.18

References

https://cert-portal.siemens.com/productcert/pdf/ssa-30512...

x_refsource_MISC

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

High

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Jul 14, 2020
Vulnerability Reserved
Mar 4, 2020