SB2023061621 - Multiple vulnerabilities Siemens SICAM Q200 Devices

CSH
CYBERSECURITY HELP
Sign In REGISTER

Main Vulnerability Database SB2023061621

SB2023061621 - Multiple vulnerabilities Siemens SICAM Q200 Devices

Published: June 16, 2023

Security Bulletin ID SB2023061621
Severity
Medium
Patch available
YES
Number of vulnerabilities 6
Exploitation vector Remote access
Highest impact Code execution

Breakdown by Severity

Medium 83% Low 17%
  • Low
  • Medium
  • High
  • Critical

Description

This security bulletin contains information about 6 secuirty vulnerabilities.


1) Session Fixation (CVE-ID: CVE-2022-43398)

The vulnerability allows a remote attacker to compromise the target system.

The vulnerability exists due to the session fixation issue. A remote attacker can overwrite the stored session cookie of a user and gain access to the user's account through the activated session.


2) Input validation error (CVE-ID: CVE-2022-43439)

The vulnerability allows a remote attacker to execute arbitrary code on the system.

The vulnerability exists due to insufficient validation of user-supplied input within the Language-parameter. A remote user can pass specially crafted input to the application and execute arbitrary code on the target system.


3) Input validation error (CVE-ID: CVE-2022-43545)

The vulnerability allows a remote attacker to execute arbitrary code on the system.

The vulnerability exists due to insufficient validation of user-supplied input within the RecordType-parameter. A remote user can pass specially crafted input to the application and execute arbitrary code on the target system.


4) Input validation error (CVE-ID: CVE-2022-43546)

The vulnerability allows a remote attacker to execute arbitrary code on the system.

The vulnerability exists due to insufficient validation of user-supplied input within the EndTime-parameter. A remote user can pass specially crafted input to the application and execute arbitrary code on the target system.


5) Cross-site request forgery (CVE-ID: CVE-2023-30901)

The vulnerability allows a remote attacker to perform cross-site request forgery attacks.

The vulnerability exists due to insufficient validation of the HTTP request origin. A remote attacker can trick the victim to visit a specially crafted web page and perform arbitrary actions on behalf of the victim on the vulnerable website.


6) Incorrect permission assignment for critical resource (CVE-ID: CVE-2023-31238)

The vulnerability allows a remote attacker to compromise the target system.

The vulnerability exists due to missing cookie protection flags when using the default settings. A remote user can impersonate a legitimate application user.


Remediation

Install update from vendor's website.

References