CVE-2023-30901

CWE-352Cross-Site Request Forgery (CSRF)3 documents3 sources
Severity
8.8HIGH
EPSS
0.2%
top 57.32%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
4
Siemens Sicam P850Siemens Sicam P855Siemens Sicam T+1 more
Timeline
PublishedJun 13

Description

A vulnerability has been identified in SICAM P850 (7KG8500-0AA00-0AA0) (All versions < V3.11), SICAM P850 (7KG8500-0AA00-2AA0) (All versions < V3.11), SICAM P850 (7KG8500-0AA10-0AA0) (All versions < V3.11), SICAM P850 (7KG8500-0AA10-2AA0) (All versions < V3.11), SICAM P850 (7KG8500-0AA30-0AA0) (All versions < V3.11), SICAM P850 (7KG8500-0AA30-2AA0) (All versions < V3.11), SICAM P850 (7KG8501-0AA01-0AA0) (All versions < V3.11), SICAM P850 (7KG8501-0AA01-2AA0) (All versions < V3.11), SICAM P850 (7

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:NExploitability: 2.8 | Impact: 1.4

Affected Packages4 packages

CVEListV5siemens/sicam_p850< V3.11
CVEListV5siemens/sicam_p855< V3.11
CVEListV5siemens/sicam_t< V3.0

Patches

Patch: cert-portal.siemens.comPatch: cert-portal.siemens.com

🔴Vulnerability Details

2
CVEList
CVE-2023-30901: A vulnerability has been identified in SICAM P850 (7KG8500-0AA00-0AA0) (All versions < V32023-06-13
GHSA
GHSA-qxv4-rrm3-v6px: A vulnerability has been identified in POWER METER SICAM Q200 family (All versions < V22023-06-13
CVE-2023-30901 (HIGH CVSS 8.8) | A vulnerability has been identified | cvebase.io