CVE-2022-43439 — Vulnetix

CVE-2022-43439 PUBLISHED CVSS 8.699999809265137 HIGH

Ein entfernter, authentisierter oder anonymer Angreifer kann mehrere Schwachstellen in Siemens SICAM ausnutzen, um beliebigen Programmcode auszuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service zu verursachen.

EPSS 2.10% · 84.4th percentile

Risk Scores

CVSS v4.0

8.699999809265137

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

EPSS Score

2.10%

84.4th percentile

Affected Products

Vendor	Product	Versions
Siemens	Siemens SICAM Q200 <V2.70
Siemens	Siemens SICAM Q100 <2.50
Siemens	Siemens SICAM
Siemens	Siemens SICAM T <V3.0

Timeline

Nov 7, 2022 CVE Published
Nov 9, 2022 EPSS Score
Nov 13, 2022 EPSS Score
Dec 22, 2022 EPSS Score
Mar 7, 2023 EPSS Score
Mar 18, 2023 EPSS Score
Apr 30, 2023 EPSS Score
Jun 12, 2023 EPSS Score
Jul 25, 2023 EPSS Score
Sep 6, 2023 EPSS Score
Dec 1, 2023 EPSS Score
Jan 13, 2024 EPSS Score

References

https://wid.cert-bund.de/.well-known/csaf/white/2022/wid-sec-w-2022-1974.json advisory
https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2022-1974 advisory
https://cert-portal.siemens.com/productcert/pdf/ssa-570294.pdf advisory
https://cert-portal.siemens.com/productcert/html/ssa-471761.html advisory
https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-1431.json advisory
https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-1431 advisory
https://cert-portal.siemens.com/productcert/html/ssa-887249.html advisory
https://cert-portal.siemens.com/productcert/html/ssa-480095.html advisory
https://cert-portal.siemens.com/productcert/html/ssa-201498.html advisory

Open in Interactive Console →