The SICAM A8000 RTUs (Remote Terminal Units) series is a modular device family for remote control and automation applications in all areas of energy supply. A command injection vulnerability exists in the Siemens SICAM A8000 Devices CPCI85 Firmware, which can be exploited by an attacker to execute arbitrary code with root privileges.