Lucene search
DragosCVELIST:CVE-2022-45794HistoryJan 10, 2024 - 10:56 p.m.
CVE-2022-45794 Omron CJ-series and CS-series unauthenticated filesystem access.
2024-01-1022:56:58
CWE-306
Dragos
www.cve.org
cve-2022-45794
omron plc
unauthenticated access
filesystem
network protocol
8.6 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N
8.6 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
37.2%
An attacker with network access to the affected PLC (CJ-series and CS-series PLCs, all versions) may use a network protocol to read and write files on the PLC internal memory and memory card.
CNA Affected
[
{
"defaultStatus": "affected",
"product": "CJ-series and CS-series CPU modules",
"vendor": "Omron",
"versions": [
{
"status": "affected",
"version": "0"
}
]
}
]Related
cve
cve
CVE-2022-45794
2024-01-10 23:15:08
prion
prion
Memory corruption
2024-01-10 23:15:00
nvd
nvd
CVE-2022-45794
2024-01-10 23:15:08
ics
ics
Omron CS/CJ Series
2023-04-18 12:00:00
nessus
nessus
8.6 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N
8.6 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
37.2%
Related for CVELIST:CVE-2022-45794