Lucene search

[email protected]CVE-2022-27583

HistoryOct 31, 2022 - 8:15 p.m.

CVE-2022-27583

2022-10-3120:15:12

CWE-285

[email protected]

web.nvd.nist.gov

cve-2022-27583

remote attacker

configuration interface

flexi-compact

flx3-cpuc1

flx3-cpuc2

firmware vulnerability

availability impact

9.1 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H

9 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

39.3%

JSON

A remote unprivileged attacker can interact with the configuration interface of a Flexi-Compact FLX3-CPUC1 or FLX3-CPUC2 running an affected firmware version to potentially impact the availability of the FlexiCompact.

Affected configurations

NVD

Node

sickflx3-cpuc1_firmwareRange<1.10.0

AND

sickflx3-cpuc1Match-

Node

sickflx3-cpuc2_firmwareRange<1.10.0

AND

sickflx3-cpuc2Match-

CPENameOperatorVersion
sick:flx3-cpuc1_firmwaresick flx3-cpuc1 firmwarelt1.10.0

CPE	Name	Operator	Version
sick:flx3-cpuc1_firmware	sick flx3-cpuc1 firmware	lt	1.10.0

CNA Affected

[
  {
    "vendor": "n/a",
    "product": "SICK FlexiCompact",
    "versions": [
      {
        "version": "< V1.10.0",
        "status": "affected"
      }
    ]
  }
]

References

sick.com/psirt

Social References

9.1 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H

9 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

39.3%

JSON

Related for CVE-2022-27583

nvd1 cvelist1 prion1