Input Validation Flaw in SICAM P850 and P855 Products by Siemens
CVE-2022-29880
5.4MEDIUM
What is CVE-2022-29880?
An input validation vulnerability exists in the configuration interface of the SICAM P850 and P855 devices, where inadequate checking allows an authenticated attacker to execute persistent XSS attacks. This could enable the attacker to perform actions impersonating the legitimate logged-in user, posing a significant risk to the integrity and confidentiality of the affected systems. Such vulnerabilities highlight the necessity for robust input validation mechanisms in order to protect sensitive operational environments.
Affected Version(s)
SICAM P850 All versions < V3.00
SICAM P850 All versions < V3.00
SICAM P850 All versions < V3.00