Lucene search

RockwellCVELIST:CVE-2022-38744

HistoryOct 27, 2022 - 1:25 p.m.

CVE-2022-38744 FactoryTalk Alarm and Events Server Vulnerable to Denial-Of-Service Attack

2022-10-2713:25:17

CWE-287

Rockwell

www.cve.org

cve-2022-38744

factorytalk

alarm and events

denial-of-service

rockwell automation

unauthenticated attacker

network access

xml messages

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS

0.001

Percentile

26.0%

JSON

An unauthenticated attacker with network access to a victim’s Rockwell Automation FactoryTalk Alarm and
Events service could open a connection, causing the service to fault and become unavailable. The affected port
could be used as a server ping port and uses messages structured with XML.

CNA Affected

[
  {
    "defaultStatus": "affected",
    "product": "FactoryTalk Alarm and Events Server",
    "vendor": "Rockwell Automation",
    "versions": [
      {
        "status": "affected",
        "version": "All"
      }
    ]
  }
]

References

rockwellautomation.custhelp.com/app/answers/answer_view/a_id/1136876

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS

0.001

Percentile

26.0%

JSON

Related for CVELIST:CVE-2022-38744