ICSA-25-317-11 · Published 2025-11-13 · View on CISA ICS-CERT ↗

Siemens SICAM P850 family and SICAM P855 family

CVSS 5.5 MEDIUM

Risk Summary

Successful exploitation of these vulnerabilities could allow an attacker to perform arbitrary actions on the device on behalf of a legitimate user, or impersonate that user.

CVEs (2)

CVE-2023-30901 CVE-2023-31238

Remediations

Siemens has identified the following specific workarounds and mitigations users can apply to reduce risk:
Update to V3.11 or later version
(CVE-2023-30901) All affected products: Do not access links from untrusted sources while logged in at affected devices
As a general security measure, Siemens recommends protecting network access to devices with appropriate mechanisms. To operate the devices in a protected IT environment, Siemens recommends configuring the environment according to Siemens' operational guidelines for industrial security and following recommendations in the product manuals.
Additional information on industrial security by Siemens can be found on the Siemens industrial security webpage
For more information see the associated Siemens security advisory SSA-201498 in HTML and CSAF.
(CVE-2023-31238) All affected products: Restrict access to port 443/tcp to trusted IP addresses only

Affected Vendors

Siemens

Affected Products (36)

Siemens · SICAM P850 (7KG8500-0AA00-0AA0) <3.11

Siemens · SICAM P850 (7KG8501-0AA02-2AA0) <3.11

Siemens · SICAM P850 (7KG8501-0AA11-0AA0) <3.11

Siemens · SICAM P850 (7KG8501-0AA11-2AA0) <3.11

Siemens · SICAM P850 (7KG8501-0AA12-0AA0) <3.11

Siemens · SICAM P850 (7KG8501-0AA12-2AA0) <3.11

Siemens · SICAM P850 (7KG8501-0AA31-0AA0) <3.11

Siemens · SICAM P850 (7KG8501-0AA31-2AA0) <3.11

Siemens · SICAM P850 (7KG8501-0AA32-0AA0) <3.11

Siemens · SICAM P850 (7KG8501-0AA32-2AA0) <3.11

Siemens · SICAM P855 (7KG8550-0AA00-0AA0) <3.11

Siemens · SICAM P850 (7KG8500-0AA00-2AA0) <3.11

Siemens · SICAM P855 (7KG8550-0AA00-2AA0) <3.11

Siemens · SICAM P855 (7KG8550-0AA10-0AA0) <3.11

Siemens · SICAM P855 (7KG8550-0AA10-2AA0) <3.11

Siemens · SICAM P855 (7KG8550-0AA30-0AA0) <3.11

Siemens · SICAM P855 (7KG8550-0AA30-2AA0) <3.11

Siemens · SICAM P855 (7KG8551-0AA01-0AA0) <3.11

Siemens · SICAM P855 (7KG8551-0AA01-2AA0) <3.11

Siemens · SICAM P855 (7KG8551-0AA02-0AA0) <3.11

Siemens · SICAM P855 (7KG8551-0AA02-2AA0) <3.11

Siemens · SICAM P855 (7KG8551-0AA11-0AA0) <3.11

Siemens · SICAM P850 (7KG8500-0AA10-0AA0) <3.11

Siemens · SICAM P855 (7KG8551-0AA11-2AA0) <3.11

Siemens · SICAM P855 (7KG8551-0AA12-0AA0) <3.11

Siemens · SICAM P855 (7KG8551-0AA12-2AA0) <3.11

Siemens · SICAM P855 (7KG8551-0AA31-0AA0) <3.11

Siemens · SICAM P855 (7KG8551-0AA31-2AA0) <3.11

Siemens · SICAM P855 (7KG8551-0AA32-0AA0) <3.11

Siemens · SICAM P855 (7KG8551-0AA32-2AA0) <3.11

Siemens · SICAM P850 (7KG8500-0AA10-2AA0) <3.11

Siemens · SICAM P850 (7KG8500-0AA30-0AA0) <3.11

Siemens · SICAM P850 (7KG8500-0AA30-2AA0) <3.11

Siemens · SICAM P850 (7KG8501-0AA01-0AA0) <3.11

Siemens · SICAM P850 (7KG8501-0AA01-2AA0) <3.11

Siemens · SICAM P850 (7KG8501-0AA02-0AA0) <3.11

Affected Sectors

Energy

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more