Lucene search
PRIOn knowledge basePRION:CVE-2022-30264HistoryAug 16, 2022 - 1:15 p.m.
Arbitrary file deletion
2022-08-1613:15:00
PRIOn knowledge base
www.prio-n.com
1
The Emerson ROC and FloBoss RTU product lines through 2022-05-02 perform insecure filesystem operations. They utilize the ROC protocol (4000/TCP, 5000/TCP) for communications between a master terminal and RTUs. Opcode 203 of this protocol allows a master terminal to transfer files to and from the flash filesystem and carrying out arbitrary file and directory read, write, and delete operations.
| CPE | Name | Operator | Version |
|---|---|---|---|
| dl8000_firmware | eq | <= 202252 | |
| fb3000_rtu_firmware | eq | <= 202252 | |
| roc800l_firmware | eq | <= 202252 | |
| roc809_firmware | eq | < 202252 | |
| roc827_firmware | eq | < 202252 |
Related
cve
cve
CVE-2022-30264
2022-08-16 13:15:11
ics
ics
Emerson ROC800, ROC800L and DL8000
2022-08-11 12:00:00
nvd
nvd
CVE-2022-30264
2022-08-16 13:15:11
cvelist
cvelist
CVE-2022-30264
2022-08-16 12:42:58