CVE-2022-29872

Vulnerability

SICAM T versions prior to V3.0 contain a vulnerability in the handling of POST requests, where the device does not properly validate parameters [2]. This improper validation affects all versions below V3.0 and can be exploited without special conditions beyond an authenticated session [2].

Exploitation

An authenticated attacker can craft malicious POST requests to the affected device [2]. The lack of parameter validation allows the attacker to either set the device into a denial of service state or manipulate the program counter, leading to arbitrary code execution [2]. No additional network position or user interaction beyond authentication is required [2].

Impact

Successful exploitation can result in a denial of service condition or arbitrary code execution on the device [2]. An attacker gaining code execution could achieve full compromise of the SICAM T device, potentially affecting availability and integrity of the system [2].

Mitigation

Siemens has released version V3.0 for SICAM T which addresses this vulnerability [2]. Users are recommended to update to V3.0 or later [2]. Until the update is applied, restricting network access to trusted hosts (port 443/tcp) and avoiding untrusted links while logged in are advised as mitigations [2].