#VU69169 Session Fixation in POWER METER SICAM Q100 (7KG9501-0AA31-2AA1) and POWER METER SICAM Q100 (7KG9501-0AA01-2AA1) - CVE-2022-43398

Cybersecurity Help s.r.o.

Published: 2022-11-09 | Updated: 2022-11-11

Vulnerability identifier: #VU69169

Vulnerability risk: Medium

CVSSv4.0: 4.8 [CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2022-43398

CWE-ID: CWE-384

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
POWER METER SICAM Q100 (7KG9501-0AA31-2AA1)
Hardware solutions / Firmware
POWER METER SICAM Q100 (7KG9501-0AA01-2AA1)
Hardware solutions / Firmware

Vendor: Siemens

Description

The vulnerability allows a remote attacker to compromise the target system.

The vulnerability exists due to the session fixation issue. A remote attacker can overwrite the stored session cookie of a user and gain access to the user's account through the activated session.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

POWER METER SICAM Q100 (7KG9501-0AA31-2AA1): before 2.50

POWER METER SICAM Q100 (7KG9501-0AA01-2AA1): before 2.50

External links
https://cert-portal.siemens.com/productcert/pdf/ssa-570294.pdficsa-22-314-11

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Multiple vulnerabilities Siemens SICAM Q200 Devices

Multiple vulnerabilities in Siemens SICAM Q100