Volerion logoVolerion
Volerion logoVolerion

Siemens SIPROTEC 5 Session Identifier Brute Force Vulnerability

Vulnerability

A vulnerability exists in multiple SIPROTEC 5 products, including various 6MD8x, 7KE85, 7SA8x, 7SD8x, 7SJ8x, 7SK8x, 7SL8x, 7SS8x, 7ST8x, 7UM85, 7UT8x, 7VK87, 7VU85, and the Compact 7SX800 (CP050) all versions prior to 11.0. These devices generate session identifiers using insufficiently random values, potentially allowing an unauthenticated remote attacker to brute-force a session identifier and access limited information from the web server without authorization.

Impact

Exploitation could lead to session hijacking, allowing unauthorized access to certain web server information.

Remediation

Users of the affected SIPROTEC 5 products should update to version 11.0 or later. For products where a direct update is not available, consult the Siemens ProductCERT for guidance.

Added: May 12, 2026, 10:38 AM
Updated: May 12, 2026, 10:38 AM

Vulnerability Rating

Custom Algorithm
spread
4.5
impact
0.6
exploitability
7.0
remediation
7.7
relevance
8.1
threat
0.0
urgency
2.9
incentive
4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.