Unauthenticated Remote Information Disclosure Vulnerability in Siemens SICAM RTUs SM-2556 COM Modules

Unauthenticated Remote Information Disclosure Vulnerability in Siemens SICAM RTUs SM-2556 COM Modules

CVE-2017-12737 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

An issue was discovered on Siemens SICAM RTUs SM-2556 COM Modules with the firmware variants ENOS00, ERAC00, ETA2, ETLS00, MODi00, and DNPi00. The integrated web server (port 80/tcp) of the affected devices could allow unauthenticated remote attackers to obtain sensitive device information over the network.

Learn more about our Web App Pen Testing.