CVE-2022-0902

🗓️ 21 Jul 2022 15:34:49Reported by ABBType

cve🔗 web.nvd.nist.gov📰️ 3 Media mentions👁 65 Views

CVE-2022-0902: Path Traversal and Command Injection in ABB Product

Reporter	Title	Published	Views	Family All 10
ATTACKERKB	CVE-2022-0902	14 Jul 202206:51	–	attackerkb
BDU FSTEC	The vulnerability of the tcp-protocol implementation in Totalflow’s microprogramming software for ABB RMC-100, RMC-100-LITE, XIO, XFCG5, XRCG5, uFLOG5, and UDC controllers allows a hacker to execute arbitrary code.	18 Jan 202300:00	–	bdu_fstec
Circl	CVE-2022-0902	21 Jul 202220:18	–	circl
CNNVD	多款ABB产品路径遍历漏洞	21 Jul 202200:00	–	cnnvd
Cvelist	CVE-2022-0902 ABB Flow Computer and Remote Controllers Path Traversal Vulnerability in Totalflow TCP protocol can lead to root access	21 Jul 202215:34	–	cvelist
NVD	CVE-2022-0902	21 Jul 202216:15	–	nvd
Prion	Path traversal	21 Jul 202216:15	–	prion
Positive Technologies	PT-2022-6145 · Abb · Rmc-100-Lite +6	21 Jul 202200:00	–	ptsecurity
Tenable Nessus	ABB RMC Path Traversal (CVE-2022-0902)	10 Nov 202200:00	–	nessus
The Hacker News	High-Severity Flaw Reported in Critical System Used by Oil and Gas Companies	10 Nov 202207:49	–	thn

NVD

Node

abb rmc-100_firmwareRange<2105457-037

AND

abb rmc-100Match-

Node

abb rmc-100-lite_firmwareRange<2106229-011

AND

abb rmc-100-liteMatch-

Node

abb xio_firmwareRange<2106198-008

AND

abb xioMatch-

Node

abb xfcg5_firmwareRange<2105805-016

AND

abb xfcg5Match-

Node

abb xrcg5_firmwareRange<2105864-016

AND

abb xrcg5Match-

Node

abb uflog5_firmwareRange<2105298-024

AND

abb uflog5Match-

Node

abb udc_firmwareRange<2106177-007

AND

abb udcMatch-

[
  {
    "product": "RMC-100 (Standard)",
    "vendor": "ABB",
    "versions": [
      {
        "lessThan": "2105457-037",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  },
  {
    "product": "RMC-100-LITE",
    "vendor": "ABB",
    "versions": [
      {
        "lessThan": "2106229-011",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  },
  {
    "product": "XIO",
    "vendor": "ABB",
    "versions": [
      {
        "lessThan": "2106198-008",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  },
  {
    "product": "XFCG5",
    "vendor": "ABB",
    "versions": [
      {
        "lessThan": "2105805-016",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  },
  {
    "product": "XRCG5",
    "vendor": "ABB",
    "versions": [
      {
        "lessThan": "2105864-016",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  },
  {
    "product": "uFLOG5",
    "vendor": "ABB",
    "versions": [
      {
        "lessThan": "2105298-024",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  },
  {
    "product": "UDC",
    "vendor": "ABB",
    "versions": [
      {
        "lessThan": "2106177-007",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  }
]