CVE-2022-3270 Incomplete Documentation of remote functions in FESTO products.

🗓️ 01 Dec 2022 10:27:52Reported by CERTVDEType

Incomplete Documentation of remote functions in FESTO products, potential for loss of confidentiality, integrity, and availabilit

Reporter	Title	Published	Views	Family All 12
BDU FSTEC	The vulnerability of Festo products’ microprogramming software, related to insufficient technical documentation, allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.	23 Dec 202200:00	–	bdu_fstec
Circl	CVE-2022-3270	1 Dec 202209:11	–	circl
CNNVD	Festo 多款产品安全漏洞	1 Dec 202200:00	–	cnnvd
CVE	CVE-2022-3270	1 Dec 202210:27	–	cve
EUVD	EUVD-2022-42670	3 Oct 202520:07	–	euvd
ICS	Festo Firmware	29 Nov 202211:49	–	ics
NVD	CVE-2022-3270	1 Dec 202211:15	–	nvd
Prion	Design/Logic Flaw	1 Dec 202211:15	–	prion
Positive Technologies	PT-2022-5946 · Festo · Festo Products	29 Nov 202200:00	–	ptsecurity
Tenable Nessus	Festo Firmware Insufficient Technical Documentation (CVE-2022-3270)	20 Oct 202300:00	–	nessus

[
  {
    "defaultStatus": "affected",
    "product": "Bus module CPX-E-EP",
    "vendor": "Festo SE",
    "versions": [
      {
        "status": "affected",
        "version": "all"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "product": "Bus node CPX-FB32",
    "vendor": "Festo SE",
    "versions": [
      {
        "status": "affected",
        "version": "all"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "product": "Bus node CPX-FB33",
    "vendor": "Festo SE",
    "versions": [
      {
        "status": "affected",
        "version": "all"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "product": "Bus node CPX-FB36",
    "vendor": "Festo SE",
    "versions": [
      {
        "status": "affected",
        "version": "all"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "product": "Bus node CPX-FB37",
    "vendor": "Festo SE",
    "versions": [
      {
        "status": "affected",
        "version": "all"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "product": "Bus node CPX-FB39",
    "vendor": "Festo SE",
    "versions": [
      {
        "status": "affected",
        "version": "all"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "product": "Bus node CPX-FB40",
    "vendor": "Festo SE",
    "versions": [
      {
        "status": "affected",
        "version": "all"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "product": "Bus node CPX-FB43",
    "vendor": "Festo SE",
    "versions": [
      {
        "status": "affected",
        "version": "all"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "product": "Bus node CPX-M-FB34",
    "vendor": "Festo SE",
    "versions": [
      {
        "status": "affected",
        "version": "all"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "product": "Bus node CPX-M-FB35",
    "vendor": "Festo SE",
    "versions": [
      {
        "status": "affected",
        "version": "all"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "product": "Bus node CPX-M-FB44",
    "vendor": "Festo SE",
    "versions": [
      {
        "status": "affected",
        "version": "all"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "product": "Bus node CPX-M-FB45",
    "vendor": "Festo SE",
    "versions": [
      {
        "status": "affected",
        "version": "all"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "product": "Bus node CTEU-EP",
    "vendor": "Festo SE",
    "versions": [
      {
        "status": "affected",
        "version": "all"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "product": "Bus node CTEU-PN",
    "vendor": "Festo SE",
    "versions": [
      {
        "status": "affected",
        "version": "all"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "product": "Bus node CTEU-PN-EX1C",
    "vendor": "Festo SE",
    "versions": [
      {
        "status": "affected",
        "version": "all"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "product": "Camera system CHB-C-N",
    "vendor": "Festo SE",
    "versions": [
      {
        "status": "affected",
        "version": "all"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "product": "Compact Vision System SBO*-C-*",
    "vendor": "Festo SE",
    "versions": [
      {
        "status": "affected",
        "version": "all"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "product": "Compact Vision System SBO*-M-*",
    "vendor": "Festo SE",
    "versions": [
      {
        "status": "affected",
        "version": "all"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "product": "Compact Vision System SBO*-Q-*",
    "vendor": "Festo SE",
    "versions": [
      {
        "status": "affected",
        "version": "all"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "product": "Control block CPX-CEC",
    "vendor": "Festo SE",
    "versions": [
      {
        "status": "affected",
        "version": "all"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "product": "Control block CPX-CEC-C1",
    "vendor": "Festo SE",
    "versions": [
      {
        "status": "affected",
        "version": "all"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "product": "Control block CPX-CEC-C1-V3",
    "vendor": "Festo SE",
    "versions": [
      {
        "status": "affected",
        "version": "all"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "product": "Control block CPX-CEC-M1",
    "vendor": "Festo SE",
    "versions": [
      {
        "status": "affected",
        "version": "all"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "product": "Control block CPX-CEC-M1-V3",
    "vendor": "Festo SE",
    "versions": [
      {
        "status": "affected",
        "version": "all"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "product": "Control block CPX-CEC-S1-V3",
    "vendor": "Festo SE",
    "versions": [
      {
        "status": "affected",
        "version": "all"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "product": "Control block CPX-CMXX",
    "vendor": "Festo SE",
    "versions": [
      {
        "status": "affected",
        "version": "all"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "product": "Control block CPX-CMXX",
    "vendor": "Festo SE",
    "versions": [
      {
        "status": "affected",
        "version": "all"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "product": "Control block CPX-FEC-1-IE",
    "vendor": "Festo SE",
    "versions": [
      {
        "status": "affected",
        "version": "all"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "product": "Controller CECC-D",
    "vendor": "Festo SE",
    "versions": [
      {
        "status": "affected",
        "version": "all"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "product": "Controller CECC-D-BA",
    "vendor": "Festo SE",
    "versions": [
      {
        "status": "affected",
        "version": "all"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "product": "Controller CECC-LK",
    "vendor": "Festo SE",
    "versions": [
      {
        "status": "affected",
        "version": "all"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "product": "Controller CECC-S",
    "vendor": "Festo SE",
    "versions": [
      {
        "status": "affected",
        "version": "all"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "product": "Controller CECC-X-*",
    "vendor": "Festo SE",
    "versions": [
      {
        "status": "affected",
        "version": "all"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "product": "Controller CECX-X-C1",
    "vendor": "Festo SE",
    "versions": [
      {
        "status": "affected",
        "version": "all"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "product": "Controller CECX-X-M1",
    "vendor": "Festo SE",
    "versions": [
      {
        "status": "affected",
        "version": "all"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "product": "Controller CMXH-ST2-C5-7-DIOP",
    "vendor": "Festo SE",
    "versions": [
      {
        "status": "affected",
        "version": "all"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "product": "Controller CPX-E-CEC-*",
    "vendor": "Festo SE",
    "versions": [
      {
        "status": "affected",
        "version": "all"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "product": "Controller SBRD-Q",
    "vendor": "Festo SE",
    "versions": [
      {
        "status": "affected",
        "version": "all"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "product": "EtherNet/IP interface CPX-AP-I-EP-M12",
    "vendor": "Festo SE",
    "versions": [
      {
        "status": "affected",
        "version": "all"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "product": "EtherNet/IP interface CPX-AP-I-PN-M12",
    "vendor": "Festo SE",
    "versions": [
      {
        "status": "affected",
        "version": "all"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "product": "Gateway CPX-IOT",
    "vendor": "Festo SE",
    "versions": [
      {
        "status": "affected",
        "version": "all"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "product": "Integrated drive EMCA-EC-67-*",
    "vendor": "Festo SE",
    "versions": [
      {
        "status": "affected",
        "version": "all"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "product": "Motor controller CMMO-ST-C5-1-DION",
    "vendor": "Festo SE",
    "versions": [
      {
        "status": "affected",
        "version": "all"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "product": "Motor controller CMMO-ST-C5-1-DIOP",
    "vendor": "Festo SE",
    "versions": [
      {
        "status": "affected",
        "version": "all"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "product": "Motor controller CMMO-ST-C5-1-LKP",
    "vendor": "Festo SE",
    "versions": [
      {
        "status": "affected",
        "version": "all"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "product": "Motor controller CMMP-AS-*",
    "vendor": "Festo SE",
    "versions": [
      {
        "status": "affected",
        "version": "all"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "product": "Motor controller CMMT-AS-*",
    "vendor": "Festo SE",
    "versions": [
      {
        "status": "affected",
        "version": "all"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "product": "Operator unit CDPX-X-A-S-10",
    "vendor": "Festo SE",
    "versions": [
      {
        "status": "affected",
        "version": "all"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "product": "Operator unit CDPX-X-A-W-13",
    "vendor": "Festo SE",
    "versions": [
      {
        "status": "affected",
        "version": "all"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "product": "Operator unit CDPX-X-A-W-4",
    "vendor": "Festo SE",
    "versions": [
      {
        "status": "affected",
        "version": "all"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "product": "Operator unit CDPX-X-A-W-7",
    "vendor": "Festo SE",
    "versions": [
      {
        "status": "affected",
        "version": "all"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "product": "Planar surface gantry EXCM-*",
    "vendor": "Festo SE",
    "versions": [
      {
        "status": "affected",
        "version": "all"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "product": "Servo drive CMMT-ST-C8-1C-EP-S0",
    "vendor": "Festo SE",
    "versions": [
      {
        "status": "affected",
        "version": "all"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "product": "Servo drive CMMT-ST-C8-1C-PN-S0",
    "vendor": "Festo SE",
    "versions": [
      {
        "status": "affected",
        "version": "all"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "product": "VTEM-S1-*",
    "vendor": "Festo SE",
    "versions": [
      {
        "status": "affected",
        "version": "all"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "product": "Bus module CPX-E-PN",
    "vendor": "Festo SE",
    "versions": [
      {
        "status": "affected",
        "version": "all"
      }
    ]
  }
]

Source	Link
cert	www.cert.vde.com/en/advisories/VDE-2022-041/

13 Dec 2022 09:12Current

9.7High risk

Vulners AI Score9.7

CVSS 3.19.8

EPSS0.00955

CWE-1059