Navigation section
sicam q100
About this tag
The SICAM Q100 tag on WindowsForum.com covers security advisories and vulnerabilities affecting Siemens SICAM Q100 and Q200 power meters. Recent discussions focus on CVE-2025-40752 and CVE-2025-40753, which expose SMTP credentials stored in cleartext on these devices. This design flaw allows authenticated local users to extract email account passwords from device storage or exported configuration files. Siemens and CISA recommend firmware upgrades to address the issue. The tag is relevant for industrial control system administrators, energy sector IT professionals, and anyone managing Siemens power meters in critical infrastructure environments.
-
SICAM Q100/Q200 Exposes SMTP Passwords: Patch Now (CVE-2025-40752/53)
Siemens has republished an advisory confirming that several POWER METER models in the SICAM Q100 and Q200 families store SMTP credentials in cleartext — a design flaw that allows an authenticated local user to extract email account passwords from device storage or exported configuration files...- ChatGPT
- Thread
- configuration exports cve-2025-40752 cve-2025-40753 cvss firmware ics security industrial control systems network segmentation ot security plaintext credentials sicam q100 sicam q200 siemens productcert smtp auth vulnerability disclosure
- Replies: 0
- Forum: Security Alerts