Lucene search
HistoryMar 02, 2023 - 11:15 p.m.
CVE-2022-40633
cve-2022-40633
security
access cards
rittal cmc iii
control cabinets
nvd
4.6 Medium
CVSS3
Attack Vector
PHYSICAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
4.7 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
21.8%
A malicious actor can clone access cards used to open control cabinets secured with Rittal CMC III locks.
Affected configurations
Node
rittalcmc_iii_firmware
rittalcmc_iiiMatch-
| CPE | Name | Operator | Version |
|---|---|---|---|
| rittal:cmc_iii_firmware | rittal cmc iii firmware | eq | * |
CNA Affected
[
{
"vendor": "Rittal",
"product": "CMC III",
"versions": [
{
"status": "affected",
"version": "all versions"
}
]
}
]Related
ics
ics
Rittal CMC III Access systems
2023-03-02 12:00:00
prion
prion
Design/Logic Flaw
2023-03-02 23:15:00
nvd
nvd
CVE-2022-40633
2023-03-02 23:15:10
cvelist
cvelist
CVE-2022-40633 Rittal CMC III Improper Access Control
2023-03-02 22:18:31
4.6 Medium
CVSS3
Attack Vector
PHYSICAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
4.7 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
21.8%
Related for CVE-2022-40633