CVE-2022-3737

🗓️ 15 Nov 2022 10:59:00Reported by CERTVDEType

cve🔗 web.nvd.nist.gov📰️ 2 Media mentions👁 50 Views

In PHOENIX CONTACT Automationworx Software Suite up to version 1.89, memory can be read beyond the intended scope due to insufficient input data validation

Reporter	Title	Published	Views	Family All 8
CNNVD	PHOENIX CONTACT AUTOMATIONWORX Software Suite 缓冲区错误漏洞	15 Nov 202200:00	–	cnnvd
Cvelist	CVE-2022-3737 Out-of-bounds Read in PHOENIX CONTACT Automationworx Software Suite	15 Nov 202210:59	–	cvelist
EUVD	EUVD-2022-43093	3 Oct 202520:07	–	euvd
ICS	Phoenix Contact Automation Worx	22 Nov 202200:00	–	ics
NVD	CVE-2022-3737	15 Nov 202211:15	–	nvd
Prion	Input validation	15 Nov 202211:15	–	prion
Positive Technologies	PT-2022-23949 · Phoenix Contact · Automationworx Software Suite	15 Nov 202200:00	–	ptsecurity
Vulnrichment	CVE-2022-3737 Out-of-bounds Read in PHOENIX CONTACT Automationworx Software Suite	15 Nov 202210:59	–	vulnrichment

NVD

Vulners

Node

phoenixcontact automationworx_software_suiteMatch1.89

[
  {
    "defaultStatus": "unaffected",
    "product": "Config+",
    "vendor": "PHOENIX CONTACT",
    "versions": [
      {
        "lessThanOrEqual": "1.89",
        "status": "affected",
        "version": "0",
        "versionType": "semver"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "PC Worx",
    "vendor": "PHOENIX CONTACT",
    "versions": [
      {
        "lessThanOrEqual": "1.89",
        "status": "affected",
        "version": "0",
        "versionType": "semver"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "PC Worx Express",
    "vendor": "PHOENIX CONTACT",
    "versions": [
      {
        "lessThanOrEqual": "1.89",
        "status": "affected",
        "version": "0",
        "versionType": "semver"
      }
    ]
  }
]