Spectrum Power 7 is affected by a vulnerability that could allow an authenticated local attacker to inject arbitrary code to the update script and escalate privileges. Siemens has released an update for Spectrum Power 7 and recommends to update to the latest version.
https://cert-portal.siemens.com/productcert/html/ssa-357182.html