The SICAM Q200 is a multifunctional device for detecting, reporting and analyzing measured values and events. A cross-site request forgery vulnerability exists in the Siemens SICAM Q200, which can be exploited by an attacker to perform arbitrary actions on the device on behalf of a vulnerable user.