Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2022-38773
HistoryJan 10, 2023 - 12:15 p.m.

CVE-2022-38773

2023-01-1012:15:23
CWE-1326
[email protected]
web.nvd.nist.gov
5
cve-2022-38773
integrity validation
physical access

CVSS3

6.8

Attack Vector

PHYSICAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

6

Confidence

High

EPSS

0.001

Percentile

28.8%

JSON

Affected devices do not contain an Immutable Root of Trust in Hardware. With this the integrity of the code executed on the device can not be validated during load-time. An attacker with physical access to the device could use this to replace the boot image of the device and execute arbitrary code.

Affected configurations

Nvd
Node
siemenssimatic_drive_controller_cpu_1504d_tf_firmwareMatch-
AND
siemenssimatic_drive_controller_cpu_1504d_tfMatch-
Node
siemenssimatic_drive_controller_cpu_1507d_tf_firmwareMatch-
AND
siemenssimatic_drive_controller_cpu_1507d_tfMatch-
Node
siemenssimatic_s7-1500_cpu_1510sp_f-1_pn_firmwareMatch-
AND
siemenssimatic_s7-1500_cpu_1510sp_f-1_pnMatch-
Node
siemenssimatic_s7-1500_cpu_1510sp-1_pn_firmwareMatch-
AND
siemenssimatic_s7-1500_cpu_1510sp-1_pnMatch-
Node
siemenssimatic_s7-1500_cpu_1511-1_pn_firmwareMatch-
AND
siemenssimatic_s7-1500_cpu_1511-1_pnMatch-
Node
siemenssimatic_s7-1500_cpu_1511c-1_pn_firmwareMatch-
AND
siemenssimatic_s7-1500_cpu_1511c-1_pnMatch-
Node
siemenssimatic_s7-1500_cpu_1511f-1_pn_firmwareMatch-
AND
siemenssimatic_s7-1500_cpu_1511f-1_pnMatch-
Node
siemenssimatic_s7-1500_cpu_1511t-1_pn_firmwareMatch-
AND
siemenssimatic_s7-1500_cpu_1511t-1_pnMatch-
Node
siemenssimatic_s7-1500_cpu_1511tf-1_pn_firmwareMatch-
AND
siemenssimatic_s7-1500_cpu_1511tf-1_pnMatch-
Node
siemenssimatic_s7-1500_cpu_1512c-1_pn_firmwareMatch-
AND
siemenssimatic_s7-1500_cpu_1512c-1_pnMatch-
Node
siemenssimatic_s7-1500_cpu_1512sp_f-1_pn_firmwareMatch-
AND
siemenssimatic_s7-1500_cpu_1512sp_f-1_pnMatch-
Node
siemenssimatic_s7-1500_cpu_1512sp-1_pn_firmwareMatch-
AND
siemenssimatic_s7-1500_cpu_1512sp-1_pnMatch-
Node
siemenssimatic_s7-1500_cpu_1513-1_pn_firmwareMatch-
AND
siemenssimatic_s7-1500_cpu_1513-1_pnMatch-
Node
siemenssimatic_s7-1500_cpu_1513f-1_pn_firmwareMatch-
AND
siemenssimatic_s7-1500_cpu_1513f-1_pnMatch-
Node
siemenssimatic_s7-1500_cpu_1513r-1_pn_firmwareMatch-
AND
siemenssimatic_s7-1500_cpu_1513r-1_pnMatch-
Node
siemenssimatic_s7-1500_cpu_1515-2_pn_firmwareMatch-
AND
siemenssimatic_s7-1500_cpu_1515-2_pnMatch-
Node
siemenssimatic_s7-1500_cpu_1515f-2_pn_firmwareMatch-
AND
siemenssimatic_s7-1500_cpu_1515f-2_pnMatch-
Node
siemenssimatic_s7-1500_cpu_1515r-2_pn_firmwareMatch-
AND
siemenssimatic_s7-1500_cpu_1515r-2_pnMatch-
Node
siemenssimatic_s7-1500_cpu_1515t-2_pn_firmwareMatch-
AND
siemenssimatic_s7-1500_cpu_1515t-2_pnMatch-
Node
siemenssimatic_s7-1500_cpu_1515tf-2_pn_firmwareMatch-
AND
siemenssimatic_s7-1500_cpu_1515tf-2_pnMatch-
Node
siemenssimatic_s7-1500_cpu_1516-3_pn\/dp_firmwareMatch-
AND
siemenssimatic_s7-1500_cpu_1516-3_pn\/dpMatch-
Node
siemenssimatic_s7-1500_cpu_1516f-3_pn\/dp_firmwareMatch-
AND
siemenssimatic_s7-1500_cpu_1516f-3_pn\/dpMatch-
Node
siemenssimatic_s7-1500_cpu_1516t-3_pn\/dp_firmwareMatch-
AND
siemenssimatic_s7-1500_cpu_1516t-3_pn\/dpMatch-
Node
siemenssimatic_s7-1500_cpu_1516tf-3_pn\/dp_firmwareMatch-
AND
siemenssimatic_s7-1500_cpu_1516tf-3_pn\/dpMatch-
Node
siemenssimatic_s7-1500_cpu_1517-3_pn\/dpMatch-
AND
siemenssimatic_s7-1500_cpu_1517-3_pn\/dp_firmwareMatch-
Node
siemenssimatic_s7-1500_cpu_1517f-3_pn\/dpMatch-
AND
siemenssimatic_s7-1500_cpu_1517f-3_pn\/dp_firmwareMatch-
Node
siemenssimatic_s7-1500_cpu_1517h-3_pnMatch-
AND
siemenssimatic_s7-1500_cpu_1517h-3_pn_firmwareMatch-
Node
siemenssimatic_s7-1500_cpu_1517t-3_pn\/dpMatch-
AND
siemenssimatic_s7-1500_cpu_1517t-3_pn\/dp_firmwareMatch-
Node
siemenssimatic_s7-1500_cpu_1517tf-3_pn\/dpMatch-
AND
siemenssimatic_s7-1500_cpu_1517tf-3_pn\/dp_firmwareMatch-
Node
siemenssimatic_s7-1500_cpu_1518-4_pn\/dpMatch-
AND
siemenssimatic_s7-1500_cpu_1518-4_pn\/dp_firmwareMatch-
Node
siemenssimatic_s7-1500_cpu_1518-4_pn\/dp_mfpMatch-
AND
siemenssimatic_s7-1500_cpu_1518-4_pn\/dp_mfp_firmwareMatch-
Node
siemenssimatic_s7-1500_cpu_1518-4f_pn\/dpMatch-
AND
siemenssimatic_s7-1500_cpu_1518-4f_pn\/dp_firmwareMatch-
Node
siemenssimatic_s7-1500_cpu_1518f-4_pn\/dp_mfp_firmwareMatch-
AND
siemenssimatic_s7-1500_cpu_1518f-4_pn\/dp_mfpMatch-
Node
siemenssimatic_s7-1500_cpu_1518hf-4_pn_firmwareMatch-
AND
siemenssimatic_s7-1500_cpu_1518hf-4_pnMatch-
Node
siemenssimatic_s7-1500_cpu_1518t-4_pn\/dp_firmwareMatch-
AND
siemenssimatic_s7-1500_cpu_1518t-4_pn\/dpMatch-
Node
siemenssimatic_s7-1500_cpu_1518tf-4_pn\/dp_firmwareMatch-
AND
siemenssimatic_s7-1500_cpu_1518tf-4_pn\/dpMatch-
Node
siemenssimatic_s7-1500_cpu_s7-1518-4_pn\/dp_odk_firmwareMatch-
AND
siemenssimatic_s7-1500_cpu_s7-1518-4_pn\/dp_odkMatch-
Node
siemenssimatic_s7-1500_cpu_s7-1518f-4_pn\/dp_odk_firmwareMatch-
AND
siemenssimatic_s7-1500_cpu_s7-1518f-4_pn\/dp_odkMatch-
Node
siemenssimatic_s7-1500_cpu_1513pro_f-2_pn_firmwareMatch-
AND
siemenssimatic_s7-1500_cpu_1513pro_f-2_pnMatch-
Node
siemenssimatic_s7-1500_cpu_1513pro-2_pn_firmwareMatch-
AND
siemenssimatic_s7-1500_cpu_1513pro-2_pnMatch-
Node
siemenssimatic_s7-1500_cpu_1516pro_f-2_pn_firmwareMatch-
AND
siemenssimatic_s7-1500_cpu_1516pro_f-2_pnMatch-
Node
siemenssimatic_s7-1500_cpu_1516pro-2_pn_firmwareMatch-
AND
siemenssimatic_s7-1500_cpu_1516pro-2_pnMatch-
Node
siemenssiplus_et_200sp_cpu_1510sp_f-1_pn_firmwareMatch-
AND
siemenssiplus_et_200sp_cpu_1510sp_f-1_pnMatch-
Node
siemenssiplus_et_200sp_cpu_1510sp_f-1_pn_rail_firmwareMatch-
AND
siemenssiplus_et_200sp_cpu_1510sp_f-1_pn_railMatch-
Node
siemenssiplus_et_200sp_cpu_1510sp-1_pn_firmwareMatch-
AND
siemenssiplus_et_200sp_cpu_1510sp-1_pnMatch-
Node
siemenssiplus_et_200sp_cpu_1510sp-1_pn_rail_firmwareMatch-
AND
siemenssiplus_et_200sp_cpu_1510sp-1_pn_railMatch-
Node
siemenssiplus_et_200sp_cpu_1512sp_f-1_pn_firmwareMatch-
AND
siemenssiplus_et_200sp_cpu_1512sp_f-1_pnMatch-
Node
siemenssiplus_et_200sp_cpu_1512sp_f-1_pn_rail_firmwareMatch-
AND
siemenssiplus_et_200sp_cpu_1512sp_f-1_pn_railMatch-
Node
siemenssiplus_et_200sp_cpu_1512sp-1_pn_firmwareMatch-
AND
siemenssiplus_et_200sp_cpu_1512sp-1_pnMatch-
Node
siemenssiplus_et_200sp_cpu_1512sp-1_pn_rail_firmwareMatch-
AND
siemenssiplus_et_200sp_cpu_1512sp-1_pn_railMatch-
Node
siemenssiplus_s7-1500_cpu_1511-1_pn_firmwareMatch-
AND
siemenssiplus_s7-1500_cpu_1511-1_pnMatch-
Node
siemenssiplus_s7-1500_cpu_1511-1_pn_t1_rail_firmwareMatch-
AND
siemenssiplus_s7-1500_cpu_1511-1_pn_t1_railMatch-
Node
siemenssiplus_s7-1500_cpu_1511-1_pn_tx_rail_firmwareMatch-
AND
siemenssiplus_s7-1500_cpu_1511-1_pn_tx_railMatch-
Node
siemenssiplus_s7-1500_cpu_1511f-1_pn_firmwareMatch-
AND
siemenssiplus_s7-1500_cpu_1511f-1_pnMatch-
Node
siemenssiplus_s7-1500_cpu_1513-1_pn_firmwareMatch-
AND
siemenssiplus_s7-1500_cpu_1513-1_pnMatch-
Node
siemenssiplus_s7-1500_cpu_1513f-1_pn_firmwareMatch-
AND
siemenssiplus_s7-1500_cpu_1513f-1_pnMatch-
Node
siemenssiplus_s7-1500_cpu_1515f-2_pn_firmwareMatch-
AND
siemenssiplus_s7-1500_cpu_1515f-2_pnMatch-
Node
siemenssiplus_s7-1500_cpu_1515f-2_pn_rail_firmwareMatch-
AND
siemenssiplus_s7-1500_cpu_1515f-2_pn_railMatch-
Node
siemenssiplus_s7-1500_cpu_1515f-2_pn_t2_rail_firmwareMatch-
AND
siemenssiplus_s7-1500_cpu_1515f-2_pn_t2_railMatch-
Node
siemenssiplus_s7-1500_cpu_1515r-2_pn_firmwareMatch-
AND
siemenssiplus_s7-1500_cpu_1515r-2_pnMatch-
Node
siemenssiplus_s7-1500_cpu_1515r-2_pn_tx_rail_firmwareMatch-
AND
siemenssiplus_s7-1500_cpu_1515r-2_pn_tx_railMatch-
Node
siemenssiplus_s7-1500_cpu_1516-3_pn\/dp_firmwareMatch-
AND
siemenssiplus_s7-1500_cpu_1516-3_pn\/dpMatch-
Node
siemenssiplus_s7-1500_cpu_1516-3_pn\/dp_rail_firmwareMatch-
AND
siemenssiplus_s7-1500_cpu_1516-3_pn\/dp_railMatch-
Node
siemenssiplus_s7-1500_cpu_1516-3_pn\/dp_tx_rail_firmwareMatch-
AND
siemenssiplus_s7-1500_cpu_1516-3_pn\/dp_tx_railMatch-
Node
siemenssiplus_s7-1500_cpu_1516f-3_pn\/dp_firmwareMatch-
AND
siemenssiplus_s7-1500_cpu_1516f-3_pn\/dpMatch-
Node
siemenssiplus_s7-1500_cpu_1516f-3_pn\/dp_rail_firmwareMatch-
AND
siemenssiplus_s7-1500_cpu_1516f-3_pn\/dp_railMatch-
Node
siemenssiplus_s7-1500_cpu_1517h-3_pn_firmwareMatch-
AND
siemenssiplus_s7-1500_cpu_1517h-3_pnMatch-
Node
siemenssiplus_s7-1500_cpu_1518-4_pn\/dp_firmwareMatch-
AND
siemenssiplus_s7-1500_cpu_1518-4_pn\/dpMatch-
Node
siemenssiplus_s7-1500_cpu_1518-4_pn\/dp_mfp_firmwareMatch-
AND
siemenssiplus_s7-1500_cpu_1518-4_pn\/dp_mfpMatch-
Node
siemenssiplus_s7-1500_cpu_1518f-4_pn\/dp_firmwareMatch-
AND
siemenssiplus_s7-1500_cpu_1518f-4_pn\/dpMatch-
VendorProductVersionCPE
siemenssimatic_drive_controller_cpu_1504d_tf_firmware-cpe:2.3:o:siemens:simatic_drive_controller_cpu_1504d_tf_firmware:-:*:*:*:*:*:*:*
siemenssimatic_drive_controller_cpu_1504d_tf-cpe:2.3:h:siemens:simatic_drive_controller_cpu_1504d_tf:-:*:*:*:*:*:*:*
siemenssimatic_drive_controller_cpu_1507d_tf_firmware-cpe:2.3:o:siemens:simatic_drive_controller_cpu_1507d_tf_firmware:-:*:*:*:*:*:*:*
siemenssimatic_drive_controller_cpu_1507d_tf-cpe:2.3:h:siemens:simatic_drive_controller_cpu_1507d_tf:-:*:*:*:*:*:*:*
siemenssimatic_s7-1500_cpu_1510sp_f-1_pn_firmware-cpe:2.3:o:siemens:simatic_s7-1500_cpu_1510sp_f-1_pn_firmware:-:*:*:*:*:*:*:*
siemenssimatic_s7-1500_cpu_1510sp_f-1_pn-cpe:2.3:h:siemens:simatic_s7-1500_cpu_1510sp_f-1_pn:-:*:*:*:*:*:*:*
siemenssimatic_s7-1500_cpu_1510sp-1_pn_firmware-cpe:2.3:o:siemens:simatic_s7-1500_cpu_1510sp-1_pn_firmware:-:*:*:*:*:*:*:*
siemenssimatic_s7-1500_cpu_1510sp-1_pn-cpe:2.3:h:siemens:simatic_s7-1500_cpu_1510sp-1_pn:-:*:*:*:*:*:*:*
siemenssimatic_s7-1500_cpu_1511-1_pn_firmware-cpe:2.3:o:siemens:simatic_s7-1500_cpu_1511-1_pn_firmware:-:*:*:*:*:*:*:*
siemenssimatic_s7-1500_cpu_1511-1_pn-cpe:2.3:h:siemens:simatic_s7-1500_cpu_1511-1_pn:-:*:*:*:*:*:*:*
Rows per page:
1-10 of 1401

Related

cvelist 1
ics 1
nessus 1
thn 1
cnvd 1
prion 1
cve 1
cvelist
cvelist
CVE-2022-38773
2023-01-10 11:39:37
ics
ics
Siemens S7-1500 CPU devices
2023-01-13 12:00:00
nessus
nessus
Siemens S7-1500 CPU devices Missing Immutable Root of Trust in Hardware (CVE-2022-38773)
2023-01-25 00:00:00
thn
thn
Over 100 Siemens PLC Models Found Vulnerable to Firmware Takeover
2023-01-12 14:27:00
cnvd
cnvd
Siemens S7-1500 CPU devices have an unspecified vulnerability
2023-01-13 00:00:00
prion
prion
Code injection
2023-01-10 12:15:00
cve
cve
CVE-2022-38773
2023-01-10 12:15:23

CVSS3

6.8

Attack Vector

PHYSICAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

6

Confidence

High

EPSS

0.001

Percentile

28.8%

JSON
Related for NVD:CVE-2022-38773
cvelist1ics1nessus1thn1cnvd1prion1cve1