Siemens SIPROTEC 5 6MD84
0 remedies
0 remedies
Siemens SIPROTEC 5 Arbitrary File Upload Vulnerability via DIGSI 5 Protocol
Vulnerability
Patched
A vulnerability exists in various Siemens SIPROTEC 5 device models, all versions, allowing authenticated users to upload arbitrary files through the DIGSI 5 protocol. This could enable the upload of malicious configuration files, potentially causing a denial-of-service condition and leading to unauthorized code execution.
Impact
Exploitation of this vulnerability could result in arbitrary file uploads, allowing for the introduction of malicious configuration files that could cause a denial-of-service condition and potentially enable unauthorized code execution.
Remediation
Users of SIPROTEC 5 Compact 7SX800 (CP050) and CP150 device models should upgrade to version 9.90 or later. For CP300 device models, those with versions 7ST85 and 7ST86 should upgrade to version 10.00 or later, while the remaining models should upgrade to version 9.90 or later. These versions introduce an allow-list feature that restricts arbitrary file uploads. For products where fixes are not yet available, Siemens recommends activating role-based access control (RBAC) in the device, applying password protection to all DIGSI connections, and provisioning DIGSI access with certificates signed by the customer PKI.
Added: Jun 9, 2026, 10:41 AM
Updated: Jun 9, 2026, 10:41 AM
Vulnerability Rating
Custom Algorithm
spread
4.5impact
7.5exploitability
4.3remediation
8.3relevance
9.6threat
0.0urgency
2.9incentive
0.0Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.