CVE-2022-43545 Information

Description

A vulnerability has been identified in POWER METER SICAM Q100 (All versions < V2.50) POWER METER SICAM Q100 (All versions < V2.50). Affected devices do not properly validate the RecordType-parameter in requests to the web interface on port 443/tcp. This could allow an authenticated remote attacker to crash the device (followed by an automatic reboot) or to execute arbitrary code on the device.

Reference

https://cert-portal.siemens.com/productcert/pdf/ssa-570294.pdf