Lucene search

[email protected]NVD:CVE-2022-45794

HistoryJan 10, 2024 - 11:15 p.m.

CVE-2022-45794

2024-01-1023:15:08

CWE-306

[email protected]

web.nvd.nist.gov

network access

plc

file manipulation

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

8.5 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

37.2%

JSON

An attacker with network access to the affected PLC (CJ-series and CS-series PLCs, all versions) may use a network protocol to read and write files on the PLC internal memory and memory card.

Affected configurations

NVD

Node

omronsysmac_cj2h-cpu64-eipMatch-

AND

omronsysmac_cj2h-cpu64-eip_firmwareMatch-

Node

omronsysmac_cj2h-cpu64Match-

AND

omronsysmac_cj2h-cpu64_firmwareMatch-

Node

omronsysmac_cj2h-cpu65-eipMatch-

AND

omronsysmac_cj2h-cpu65-eip_firmwareMatch-

Node

omronsysmac_cj2h-cpu65Match-

AND

omronsysmac_cj2h-cpu65_firmwareMatch-

Node

omronsysmac_cj2h-cpu66-eipMatch-

AND

omronsysmac_cj2h-cpu66-eip_firmwareMatch-

Node

omronsysmac_cj2h-cpu66Match-

AND

omronsysmac_cj2h-cpu66_firmwareMatch-

Node

omronsysmac_cj2h-cpu67-eipMatch-

AND

omronsysmac_cj2h-cpu67-eip_firmwareMatch-

Node

omronsysmac_cj2h-cpu67_firmwareMatch-

AND

omronsysmac_cj2h-cpu67Match-

Node

omronsysmac_cj2h-cpu68-eip_firmwareMatch-

AND

omronsysmac_cj2h-cpu68-eipMatch-

Node

omronsysmac_cj2h-cpu68_firmwareMatch-

AND

omronsysmac_cj2h-cpu68Match-

Node

omronsysmac_cj2m-cpu11_firmwareMatch-

AND

omronsysmac_cj2m-cpu11Match-

Node

omronsysmac_cj2m-cpu12_firmwareMatch-

AND

omronsysmac_cj2m-cpu12Match-

Node

omronsysmac_cj2m-cpu13_firmwareMatch-

AND

omronsysmac_cj2m-cpu13Match-

Node

omronsysmac_cj2m-cpu14_firmwareMatch-

AND

omronsysmac_cj2m-cpu14Match-

Node

omronsysmac_cj2m-cpu15_firmwareMatch-

AND

omronsysmac_cj2m-cpu15Match-

Node

omronsysmac_cj2m-cpu31_firmwareMatch-

AND

omronsysmac_cj2m-cpu31Match-

Node

omronsysmac_cj2m-cpu32_firmwareMatch-

AND

omronsysmac_cj2m-cpu32Match-

Node

omronsysmac_cj2m-cpu33Match-

AND

omronsysmac_cj2m-cpu33_firmwareMatch-

Node

omronsysmac_cj2m-cpu34_firmwareMatch-

AND

omronsysmac_cj2m-cpu34Match-

Node

omronsysmac_cj2m-cpu35_firmwareMatch-

AND

omronsysmac_cj2m-cpu35Match-

Node

omronsysmac_cj1g-cpu45p_firmwareMatch-

AND

omronsysmac_cj1g-cpu45pMatch-

Node

omronsysmac_cj1g-cpu44p_firmwareMatch-

AND

omronsysmac_cj1g-cpu44pMatch-

Node

omronsysmac_cj1g-cpu43p_firmwareMatch-

AND

omronsysmac_cj1g-cpu43pMatch-

Node

omronsysmac_cj1g-cpu42p_firmwareMatch-

AND

omronsysmac_cj1g-cpu42pMatch-

Node

omronsysmac_cs1h-cpu63h_firmwareMatch-

AND

omronsysmac_cs1h-cpu63hMatch-

Node

omronsysmac_cs1h-cpu65h_firmwareMatch-

AND

omronsysmac_cs1h-cpu65hMatch-

Node

omronsysmac_cs1h-cpu67h_firmwareMatch-

AND

omronsysmac_cs1h-cpu67hMatch-

Node

omronsysmac_cs1h-cpu64h_firmwareMatch-

AND

omronsysmac_cs1h-cpu64hMatch-

Node

omronsysmac_cs1h-cpu66h_firmwareMatch-

AND

omronsysmac_cs1h-cpu66hMatch-

Node

omronsysmac_cs1g-cpu44h_firmwareMatch-

AND

omronsysmac_cs1g-cpu44hMatch-

Node

omronsysmac_cs1g-cpu43h_firmwareMatch-

AND

omronsysmac_cs1g-cpu43hMatch-

Node

omronsysmac_cs1g-cpu42h_firmwareMatch-

AND

omronsysmac_cs1g-cpu42hMatch-

Node

omronsysmac_cs1g-cpu45h_firmwareMatch-

AND

omronsysmac_cs1g-cpu45hMatch-

Node

omronsysmac_cs1d-cpu65h_firmwareMatch-

AND

omronsysmac_cs1d-cpu65hMatch-

Node

omronsysmac_cs1d-cpu67h_firmwareMatch-

AND

omronsysmac_cs1d-cpu67hMatch-

Node

omronsysmac_cs1d-cpu68ha_firmwareMatch-

AND

omronsysmac_cs1d-cpu68haMatch-

Node

omronsysmac_cs1d-cpu67ha_firmwareMatch-

AND

omronsysmac_cs1d-cpu67haMatch-

Node

omronsysmac_cs1d-cpu65p_firmwareMatch-

AND

omronsysmac_cs1d-cpu65pMatch-

Node

omronsysmac_cs1d-cpu67sa_firmwareMatch-

AND

omronsysmac_cs1d-cpu67saMatch-

Node

omronsysmac_cs1d-cpu44sa_firmwareMatch-

AND

omronsysmac_cs1d-cpu44saMatch-

Node

omronsysmac_cs1d-cpu67p_firmwareMatch-

AND

omronsysmac_cs1d-cpu67pMatch-

References

www.dragos.com/advisory/omron-plc-and-engineering-software-network-and-file-format-access/

www.fa.omron.co.jp/product/security/assets/pdf/en/OMSR-2023-002_en.pdf

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

8.5 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

37.2%

JSON

Related for NVD:CVE-2022-45794

cve1 cvelist1 ics1 prion1 nessus1