Vulnerability Details CVE-2022-29884
A vulnerability has been identified in CP-8000 MASTER MODULE WITH I/O -25/+70°C (All versions < CPC80 V16.30), CP-8000 MASTER MODULE WITH I/O -40/+70°C (All versions < CPC80 V16.30), CP-8021 MASTER MODULE (All versions < CPC80 V16.30), CP-8022 MASTER MODULE WITH GPRS (All versions < CPC80 V16.30). When using the HTTPS server under specific conditions, affected devices do not properly free resources. This could allow an unauthenticated remote attacker to put the device into a denial of service condition.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.009
EPSS Ranking 74.7%
CVSS Severity
CVSS v3 Score 7.5
CVSS v2 Score 7.1
Products affected by CVE-2022-29884
-
cpe:2.3:h:siemens:sicam_a8000_cp-8000:-
-
cpe:2.3:h:siemens:sicam_a8000_cp-8021:-
-
cpe:2.3:h:siemens:sicam_a8000_cp-8022:-
-
cpe:2.3:o:siemens:sicam_a8000_cp-8000_firmware:-
-
cpe:2.3:o:siemens:sicam_a8000_cp-8000_firmware:11
-
cpe:2.3:o:siemens:sicam_a8000_cp-8000_firmware:12
-
cpe:2.3:o:siemens:sicam_a8000_cp-8000_firmware:13
-
cpe:2.3:o:siemens:sicam_a8000_cp-8000_firmware:14
-
cpe:2.3:o:siemens:sicam_a8000_cp-8000_firmware:16
-
cpe:2.3:o:siemens:sicam_a8000_cp-8021_firmware:-
-
cpe:2.3:o:siemens:sicam_a8000_cp-8021_firmware:16
-
cpe:2.3:o:siemens:sicam_a8000_cp-8022_firmware:-
-
cpe:2.3:o:siemens:sicam_a8000_cp-8022_firmware:16