Critical Siemens RTU vulnerability exposes risk to Power grids
Take action: If you are using Siemens' Sicam A8000 CP-8031 and CP-8050, update the firmware to CPCI85 V05 or later. Additionally, restrict the web server access on TCP ports 80 and 443 from trusted networks only for further protection.
Learn More
A critical vulnerability was found in Siemens' Sicam A8000 CP-8031 and CP-8050 remote terminal units. These units, which utilize the CPCI85 firmware in substations, could be exploited by threat actors to compromise devices and potentially destabilize power grids, resulting in blackouts and the deployment of backdoors. The vulnerability, identified as CVE-2023-28489, has already been patched. However, it is important to note that there is still a possibility of certain devices being accessible through third-party support connections or misconfigurations.
