Improper access control in Siemens SICAM A8000 Web Server Module



Published: 2022-08-10
Risk Medium
Patch available NO
Number of vulnerabilities 1
CVE-ID CVE-2021-46304
CWE-ID CWE-284
Exploitation vector Network
Public exploit N/A
Vulnerable software
Subscribe
CP-8000 MASTER MODULE WITH I/O -25/+70°C
Hardware solutions / Routers & switches, VoIP, GSM, etc

CP-8000 MASTER MODULE WITH I/O -40/+70°C
Hardware solutions / Routers & switches, VoIP, GSM, etc

CP-8021 MASTER MODULE
Hardware solutions / Routers & switches, VoIP, GSM, etc

CP-8022 MASTER MODULE WITH GPRS
Hardware solutions / Routers & switches, VoIP, GSM, etc

Vendor Siemens

Security Bulletin

This security bulletin contains one medium risk vulnerability.

1) Improper access control

EUVDB-ID: #VU66359

Risk: Medium

CVSSv3.1: 4 [CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N/E:U/RL:U/RC:C]

CVE-ID: CVE-2021-46304

CWE-ID: CWE-284 - Improper Access Control

Exploit availability: No

Description

The vulnerability allows a remote attacker to gain unauthorized access to otherwise restricted functionality.

The vulnerability exists due to the affected component allows to activate a web server module which provides unauthenticated access to its web pages. A remote attacker can retrieve debug-level information.

Mitigation

Cybersecurity Help is currently unaware of any official solution to address this vulnerability.

Vulnerable software versions

CP-8000 MASTER MODULE WITH I/O -25/+70°C: All versions

CP-8000 MASTER MODULE WITH I/O -40/+70°C: All versions

CP-8021 MASTER MODULE: All versions

CP-8022 MASTER MODULE WITH GPRS: All versions

External links

http://cert-portal.siemens.com/productcert/txt/ssa-185638.txt


Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

How the attacker can exploit this vulnerability?

The attacker would have to send a specially crafted request to the affected device in order to exploit this vulnerability.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.



###SIDEBAR###