QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2022-43439

Back to search

CVE-2022-43439

Published: Nov 8, 2022

Modified: Dec 9, 2025

PUBLISHED

CVSS v3.1

9.9

CRITICAL

Description

A vulnerability has been identified in POWER METER SICAM Q100 (7KG9501-0AA01-0AA1) (All versions < V2.50), POWER METER SICAM Q100 (7KG9501-0AA01-2AA1) (All versions < V2.50), POWER METER SICAM Q100 (7KG9501-0AA31-0AA1) (All versions < V2.50), POWER METER SICAM Q100 (7KG9501-0AA31-2AA1) (All versions < V2.50), SICAM P850 (7KG8500-0AA00-0AA0) (All versions < V3.10), SICAM P850 (7KG8500-0AA00-2AA0) (All versions < V3.10), SICAM P850 (7KG8500-0AA10-0AA0) (All versions < V3.10), SICAM P850 (7KG8500-0AA10-2AA0) (All versions < V3.10), SICAM P850 (7KG8500-0AA30-0AA0) (All versions < V3.10), SICAM P850 (7KG8500-0AA30-2AA0) (All versions < V3.10), SICAM P850 (7KG8501-0AA01-0AA0) (All versions < V3.10), SICAM P850 (7KG8501-0AA01-2AA0) (All versions < V3.10), SICAM P850 (7KG8501-0AA02-0AA0) (All versions < V3.10), SICAM P850 (7KG8501-0AA02-2AA0) (All versions < V3.10), SICAM P850 (7KG8501-0AA11-0AA0) (All versions < V3.10), SICAM P850 (7KG8501-0AA11-2AA0) (All versions < V3.10), SICAM P850 (7KG8501-0AA12-0AA0) (All versions < V3.10), SICAM P850 (7KG8501-0AA12-2AA0) (All versions < V3.10), SICAM P850 (7KG8501-0AA31-0AA0) (All versions < V3.10), SICAM P850 (7KG8501-0AA31-2AA0) (All versions < V3.10), SICAM P850 (7KG8501-0AA32-0AA0) (All versions < V3.10), SICAM P850 (7KG8501-0AA32-2AA0) (All versions < V3.10), SICAM P855 (7KG8550-0AA00-0AA0) (All versions < V3.10), SICAM P855 (7KG8550-0AA00-2AA0) (All versions < V3.10), SICAM P855 (7KG8550-0AA10-0AA0) (All versions < V3.10), SICAM P855 (7KG8550-0AA10-2AA0) (All versions < V3.10), SICAM P855 (7KG8550-0AA30-0AA0) (All versions < V3.10), SICAM P855 (7KG8550-0AA30-2AA0) (All versions < V3.10), SICAM P855 (7KG8551-0AA01-0AA0) (All versions < V3.10), SICAM P855 (7KG8551-0AA01-2AA0) (All versions < V3.10), SICAM P855 (7KG8551-0AA02-0AA0) (All versions < V3.10), SICAM P855 (7KG8551-0AA02-2AA0) (All versions < V3.10), SICAM P855 (7KG8551-0AA11-0AA0) (All versions < V3.10), SICAM P855 (7KG8551-0AA11-2AA0) (All versions < V3.10), SICAM P855 (7KG8551-0AA12-0AA0) (All versions < V3.10), SICAM P855 (7KG8551-0AA12-2AA0) (All versions < V3.10), SICAM P855 (7KG8551-0AA31-0AA0) (All versions < V3.10), SICAM P855 (7KG8551-0AA31-2AA0) (All versions < V3.10), SICAM P855 (7KG8551-0AA32-0AA0) (All versions < V3.10), SICAM P855 (7KG8551-0AA32-2AA0) (All versions < V3.10), SICAM T (All versions < V3.0). Affected devices do not properly validate the Language-parameter in requests to the web interface on port 443/tcp. This could allow an authenticated remote attacker to crash the device (followed by an automatic reboot) or to execute arbitrary code on the device.

VendorProductVersions

Siemens

POWER METER SICAM Q100

affected
0 - < V2.50

Siemens

POWER METER SICAM Q100

affected
0 - < V2.50

Siemens

POWER METER SICAM Q100

affected
0 - < V2.50

Siemens

POWER METER SICAM Q100

affected
0 - < V2.50

Siemens

SICAM P850

affected
All versions < V3.10

Siemens

SICAM P850

affected
All versions < V3.10

Siemens

SICAM P850

affected
All versions < V3.10

Siemens

SICAM P850

affected
All versions < V3.10

Siemens

SICAM P850

affected
All versions < V3.10

Siemens

SICAM P850

affected
All versions < V3.10

Siemens

SICAM P850

affected
All versions < V3.10

Siemens

SICAM P850

affected
All versions < V3.10

Siemens

SICAM P850

affected
All versions < V3.10

Siemens

SICAM P850

affected
All versions < V3.10

Siemens

SICAM P850

affected
All versions < V3.10

Siemens

SICAM P850

affected
All versions < V3.10

Siemens

SICAM P850

affected
All versions < V3.10

Siemens

SICAM P850

affected
All versions < V3.10

Siemens

SICAM P850

affected
All versions < V3.10

Siemens

SICAM P850

affected
All versions < V3.10

Siemens

SICAM P850

affected
All versions < V3.10

Siemens

SICAM P850

affected
All versions < V3.10

Siemens

SICAM P855

affected
All versions < V3.10

Siemens

SICAM P855

affected
All versions < V3.10

Siemens

SICAM P855

affected
All versions < V3.10

Siemens

SICAM P855

affected
All versions < V3.10

Siemens

SICAM P855

affected
All versions < V3.10

Siemens

SICAM P855

affected
All versions < V3.10

Siemens

SICAM P855

affected
All versions < V3.10

Siemens

SICAM P855

affected
All versions < V3.10

Siemens

SICAM P855

affected
All versions < V3.10

Siemens

SICAM P855

affected
All versions < V3.10

Siemens

SICAM P855

affected
All versions < V3.10

Siemens

SICAM P855

affected
All versions < V3.10

Siemens

SICAM P855

affected
All versions < V3.10

Siemens

SICAM P855

affected
All versions < V3.10

Siemens

SICAM P855

affected
All versions < V3.10

Siemens

SICAM P855

affected
All versions < V3.10

Siemens

SICAM P855

affected
All versions < V3.10

Siemens

SICAM P855

affected
All versions < V3.10

Siemens

SICAM T

affected
0 - < V3.0

Weaknesses (CWE)

CWE-20

CVSS v3.1 Details

CVSS v3.1 Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H/E:P/RL:O/RC:C

Attack Vector

Network

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Changed

Confidentiality

High

Integrity

High

Availability

High

References

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now