Vulnerabilities (CVE)

Filtered by vendor Siemens Subscribe
Filtered by product Sicam A8000
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2024-34057 2 Siemens, Trianglemicroworks 9 Sicam A8000, Sicam A8000 Firmware, Sicam Egs and 6 more 2024-09-25 N/A 7.5 HIGH
Triangle Microworks TMW IEC 61850 Client source code libraries before 12.2.0 lack a buffer size check when processing received messages. The resulting buffer overflow can cause a crash, resulting in a denial of service.
CVE-2020-15781 1 Siemens 2 Sicam A8000, Sicam A8000 Firmware 2024-02-04 6.8 MEDIUM 9.6 CRITICAL
A vulnerability has been identified in SICAM WEB firmware for SICAM A8000 RTUs (All versions < V05.30). The login screen does not sufficiently sanitize input, which enables an attacker to generate specially crafted log messages. If an unsuspecting victim views the log messages via the web browser, these log messages might be interpreted and executed as code by the web application. This Cross-Site-Scripting (XSS) vulnerability might compromize the confidentiality, integrity and availability of the web application.