What is the severity of CVE-2022-29877?

CVE-2022-29877 has been rated as a high severity vulnerability due to its potential impact on device security.

How do I fix CVE-2022-29877?

To fix CVE-2022-29877, upgrade all affected Siemens SICAM P850 firmware to version 3.00 or later.

Which versions are affected by CVE-2022-29877?

CVE-2022-29877 affects all versions of Siemens SICAM P850 firmware prior to 3.00.

What types of devices are impacted by CVE-2022-29877?

CVE-2022-29877 impacts various models of Siemens SICAM P850 devices, including the 7kg8500 and 7kg8550 series.

What are the implications of CVE-2022-29877?

The implications of CVE-2022-29877 can include unauthorized access and control over the affected devices if not mitigated.

Vulnerability/
CVE-2022-29877

medium

6.5

CWE

306

10/5/2022

3/8/2024

CVE-2022-29877

First published: Tue May 10 2022(Updated: )

A vulnerability has been identified in SICAM P850 (All versions < V3.00), SICAM P850 (All versions < V3.00), SICAM P850 (All versions < V3.00), SICAM P850 (All versions < V3.00), SICAM P850 (All versions < V3.00), SICAM P850 (All versions < V3.00), SICAM P850 (All versions < V3.00), SICAM P850 (All versions < V3.00), SICAM P850 (All versions < V3.00), SICAM P850 (All versions < V3.00), SICAM P850 (All versions < V3.00), SICAM P850 (All versions < V3.00), SICAM P850 (All versions < V3.00), SICAM P850 (All versions < V3.00), SICAM P850 (All versions < V3.00), SICAM P850 (All versions < V3.00), SICAM P850 (All versions < V3.00), SICAM P850 (All versions < V3.00), SICAM P855 (All versions < V3.00), SICAM P855 (All versions < V3.00), SICAM P855 (All versions < V3.00), SICAM P855 (All versions < V3.00), SICAM P855 (All versions < V3.00), SICAM P855 (All versions < V3.00), SICAM P855 (All versions < V3.00), SICAM P855 (All versions < V3.00), SICAM P855 (All versions < V3.00), SICAM P855 (All versions < V3.00), SICAM P855 (All versions < V3.00), SICAM P855 (All versions < V3.00), SICAM P855 (All versions < V3.00), SICAM P855 (All versions < V3.00), SICAM P855 (All versions < V3.00), SICAM P855 (All versions < V3.00), SICAM P855 (All versions < V3.00), SICAM P855 (All versions < V3.00). Affected devices allow unauthenticated access to the web interface configuration area. This could allow an attacker to extract internal configuration details or to reconfigure network settings. However, the reconfigured settings cannot be activated unless the role of an authenticated administrator user.

Credit: productcert@siemens.com

Affected Software	Affected Version	How to fix
Siemens 7kg8500-0aa00-0aa0 Firmware	<3.00
Siemens 7kg8500-0aa00-0aa0
Siemens 7kg8500-0aa00-2aa0 Firmware	<3.00
Siemens 7kg8500-0aa00-2aa0
Siemens 7kg8500-0aa10-0aa0 Firmware	<3.00
Siemens 7kg8500-0aa10-0aa0
Siemens 7kg8500-0aa10-2aa0 Firmware	<3.00
Siemens 7kg8500-0aa10-2aa0
Siemens 7kg8500-0aa30-0aa0 Firmware	<3.00
Siemens 7kg8500-0aa30-0aa0
Siemens 7kg8500-0aa30-2aa0 Firmware	<3.00
Siemens 7kg8500-0aa30-2aa0
Siemens 7kg8501-0aa01-0aa0 Firmware	<3.00
Siemens 7kg8501-0aa01-0aa0
Siemens 7kg8501-0aa01-2aa0 Firmware	<3.00
Siemens 7kg8501-0aa01-2aa0
Siemens 7kg8501-0aa02-0aa0 Firmware	<3.00
Siemens 7kg8501-0aa02-0aa0
Siemens 7kg8501-0aa02-2aa0 Firmware	<3.00
Siemens 7kg8501-0aa02-2aa0
Siemens 7kg8501-0aa11-0aa0 Firmware	<3.00
Siemens 7kg8501-0aa11-0aa0
Siemens 7kg8501-0aa11-2aa0 Firmware	<3.00
Siemens 7kg8501-0aa11-2aa0
Siemens 7kg8501-0aa12-0aa0 Firmware	<3.00
Siemens 7kg8501-0aa12-0aa0
Siemens 7kg8501-0aa12-2aa0 Firmware	<3.00
Siemens 7kg8501-0aa12-2aa0
Siemens 7kg8501-0aa31-0aa0 Firmware	<3.00
Siemens 7kg8501-0aa31-0aa0
Siemens 7kg8501-0aa31-2aa0 Firmware	<3.00
Siemens 7kg8501-0aa31-2aa0
Siemens 7kg8501-0aa32-0aa0 Firmware	<3.00
Siemens 7kg8501-0aa32-0aa0
Siemens 7kg8501-0aa32-2aa0 Firmware	<3.00
Siemens 7kg8501-0aa32-2aa0
Siemens 7kg8550-0aa00-0aa0 Firmware	<3.00
Siemens 7kg8550-0aa00-0aa0
Siemens 7kg8550-0aa00-2aa0 Firmware	<3.00
Siemens 7kg8550-0aa00-2aa0
Siemens 7kg8550-0aa10-0aa0 Firmware	<3.00
Siemens 7kg8550-0aa10-0aa0
Siemens 7kg8550-0aa10-2aa0 Firmware	<3.00
Siemens 7kg8550-0aa10-2aa0
Siemens 7kg8550-0aa30-0aa0 Firmware	<3.00
Siemens 7kg8550-0aa30-0aa0
Siemens 7kg8550-0aa30-2aa0 Firmware	<3.00
Siemens 7kg8550-0aa30-2aa0
Siemens 7kg8551-0aa01-0aa0 Firmware	<3.00
Siemens 7kg8551-0aa01-0aa0
Siemens 7kg8551-0aa01-2aa0 Firmware	<3.00
Siemens 7kg8551-0aa01-2aa0
Siemens 7kg8551-0aa02-0aa0 Firmware	<3.00
Siemens 7kg8551-0aa02-0aa0
Siemens 7kg8551-0aa02-2aa0 Firmware	<3.00
Siemens 7kg8551-0aa02-2aa0
Siemens 7kg8551-0aa11-0aa0 Firmware	<3.00
Siemens 7kg8551-0aa11-0aa0
Siemens 7kg8551-0aa11-2aa0 Firmware	<3.00
Siemens 7kg8551-0aa11-2aa0
Siemens 7kg8551-0aa12-0aa0 Firmware	<3.00
Siemens 7kg8551-0aa12-0aa0
Siemens 7kg8551-0aa12-2aa0 Firmware	<3.00
Siemens 7kg8551-0aa12-2aa0
Siemens 7kg8551-0aa31-0aa0 Firmware	<3.00
Siemens 7kg8551-0aa31-0aa0
Siemens 7kg8551-0aa31-2aa0 Firmware	<3.00
Siemens 7kg8551-0aa31-2aa0
Siemens 7kg8551-0aa32-0aa0 Firmware	<3.00
Siemens 7kg8551-0aa32-0aa0
Siemens 7kg8551-0aa32-2aa0 Firmware	<3.00
Siemens 7kg8551-0aa32-2aa0

Remedy

https://cert-portal.siemens.com/productcert/pdf/ssa-165073.pdf

Never miss a vulnerability like this again

Reference Links

https://cert-portal.siemens.com/productcert/pdf/ssa-165073.pdf

Frequently Asked Questions

What is the severity of CVE-2022-29877?
CVE-2022-29877 has been rated as a high severity vulnerability due to its potential impact on device security.
How do I fix CVE-2022-29877?
To fix CVE-2022-29877, upgrade all affected Siemens SICAM P850 firmware to version 3.00 or later.
Which versions are affected by CVE-2022-29877?
CVE-2022-29877 affects all versions of Siemens SICAM P850 firmware prior to 3.00.
What types of devices are impacted by CVE-2022-29877?
CVE-2022-29877 impacts various models of Siemens SICAM P850 devices, including the 7kg8500 and 7kg8550 series.
What are the implications of CVE-2022-29877?
The implications of CVE-2022-29877 can include unauthorized access and control over the affected devices if not mitigated.

CVE-2022-29877

Remedy

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2022-29877?

How do I fix CVE-2022-29877?

Which versions are affected by CVE-2022-29877?

What types of devices are impacted by CVE-2022-29877?

What are the implications of CVE-2022-29877?

Company

Resources

Contact

Frequently Asked Questions

What is the severity of CVE-2022-29877?

How do I fix CVE-2022-29877?

Which versions are affected by CVE-2022-29877?

What types of devices are impacted by CVE-2022-29877?

What are the implications of CVE-2022-29877?