Details of VAR-202204-0725

ID

VAR-202204-0725

CVE

CVE-2022-22514

TITLE

plural CODESYS GmbH Product Untrusted Pointer Dereference Vulnerability

Trust: 0.8

sources: JVNDB: JVNDB-2022-008142

DESCRIPTION

An authenticated, remote attacker can gain access to a dereferenced pointer contained in a request. The accesses can subsequently lead to local overwriting of memory in the CmpTraceMgr, whereby the attacker can neither gain the values read internally nor control the values to be written. If invalid memory is accessed, this results in a crash. CODESYS Control for BeagleBone SL , control for beckhoff cx9020 , CODESYS Control for emPC-A/iMX6 SL etc. multiple CODESYS GmbH The product contains an unreliable pointer dereference vulnerability.Information is tampered with and service operation is interrupted (DoS) It may be in a state

Trust: 1.8

sources: NVD: CVE-2022-22514 // JVNDB: JVNDB-2022-008142 // VULHUB: VHN-411083 // VULMON: CVE-2022-22514

AFFECTED PRODUCTS

vendor:	codesys	model:	control win sl	scope:	lt	version:	3.5.18.0	Trust: 1.0
vendor:	codesys	model:	edge gateway	scope:	lt	version:	4.5.0.0	Trust: 1.0
vendor:	codesys	model:	control rte sl	scope:	lt	version:	3.5.18.0	Trust: 1.0
vendor:	codesys	model:	gateway	scope:	lt	version:	3.5.18.0	Trust: 1.0
vendor:	codesys	model:	control for empc-a\/imx6 sl	scope:	lt	version:	4.5.0.0	Trust: 1.0
vendor:	codesys	model:	control for pfc200 sl	scope:	lt	version:	4.5.0.0	Trust: 1.0
vendor:	codesys	model:	hmi sl	scope:	lt	version:	3.5.18.0	Trust: 1.0
vendor:	codesys	model:	development system	scope:	gte	version:	3.0	Trust: 1.0
vendor:	codesys	model:	control runtime system toolkit	scope:	lt	version:	3.5.18.0	Trust: 1.0
vendor:	codesys	model:	control for beaglebone sl	scope:	lt	version:	4.5.0.0	Trust: 1.0
vendor:	codesys	model:	control for raspberry pi sl	scope:	lt	version:	4.5.0.0	Trust: 1.0
vendor:	codesys	model:	control for linux sl	scope:	lt	version:	4.5.0.0	Trust: 1.0
vendor:	codesys	model:	control rte sl \	scope:	lt	version:	3.5.18.0	Trust: 1.0
vendor:	codesys	model:	control for iot2000 sl	scope:	lt	version:	4.5.0.0	Trust: 1.0
vendor:	codesys	model:	control for wago touch panels 600 sl	scope:	lt	version:	4.5.0.0	Trust: 1.0
vendor:	codesys	model:	embedded target visu toolkit	scope:	lt	version:	3.5.18.0	Trust: 1.0
vendor:	codesys	model:	control for pfc100 sl	scope:	lt	version:	4.5.0.0	Trust: 1.0
vendor:	codesys	model:	control for plcnext sl	scope:	lt	version:	4.5.0.0	Trust: 1.0
vendor:	codesys	model:	control for beckhoff cx9020	scope:	lt	version:	4.5.0.0	Trust: 1.0
vendor:	codesys	model:	edge gateway	scope:	lt	version:	3.5.18.0	Trust: 1.0
vendor:	codesys	model:	development system	scope:	lt	version:	3.5.18.0	Trust: 1.0
vendor:	codesys	model:	remote target visu toolkit	scope:	lt	version:	3.5.18.0	Trust: 1.0
vendor:	codesys	model:	control for empc-a/imx6 sl	scope:	-	version:	-	Trust: 0.8
vendor:	codesys	model:	control for plcnext sl	scope:	-	version:	-	Trust: 0.8
vendor:	codesys	model:	control for iot2000 sl	scope:	-	version:	-	Trust: 0.8
vendor:	codesys	model:	embedded target visu toolkit	scope:	-	version:	-	Trust: 0.8
vendor:	codesys	model:	control for linux sl	scope:	-	version:	-	Trust: 0.8
vendor:	codesys	model:	control runtime system toolkit	scope:	-	version:	-	Trust: 0.8
vendor:	codesys	model:	control for pfc200 sl	scope:	-	version:	-	Trust: 0.8
vendor:	codesys	model:	gateway	scope:	-	version:	-	Trust: 0.8
vendor:	codesys	model:	control for raspberry pi sl	scope:	-	version:	-	Trust: 0.8
vendor:	codesys	model:	hmi sl	scope:	-	version:	-	Trust: 0.8
vendor:	codesys	model:	development system	scope:	-	version:	-	Trust: 0.8
vendor:	codesys	model:	control for beaglebone sl	scope:	-	version:	-	Trust: 0.8
vendor:	codesys	model:	control rte v3	scope:	-	version:	-	Trust: 0.8
vendor:	codesys	model:	control for beckhoff cx9020	scope:	-	version:	-	Trust: 0.8
vendor:	codesys	model:	control win sl	scope:	-	version:	-	Trust: 0.8
vendor:	codesys	model:	control for wago touch panels 600 sl	scope:	-	version:	-	Trust: 0.8
vendor:	codesys	model:	control for pfc100 sl	scope:	-	version:	-	Trust: 0.8
vendor:	codesys	model:	control rte sl	scope:	-	version:	-	Trust: 0.8
vendor:	codesys	model:	edge gateway	scope:	-	version:	-	Trust: 0.8

sources: JVNDB: JVNDB-2022-008142 // NVD: CVE-2022-22514

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2022-22514
value:	HIGH
Trust: 1.0
info@cert.vde.com:	CVE-2022-22514
value:	HIGH
Trust: 1.0
NVD:	CVE-2022-22514
value:	HIGH
Trust: 0.8
CNNVD:	CNNVD-202204-2621
value:	HIGH
Trust: 0.6
VULHUB:	VHN-411083
value:	MEDIUM
Trust: 0.1
VULMON:	CVE-2022-22514
value:	MEDIUM
Trust: 0.1

nvd@nist.gov:	CVE-2022-22514
severity:	MEDIUM
baseScore:	4.9
vectorString:	AV:N/AC:M/AU:S/C:N/I:P/A:P
accessVector:	NETWORK
accessComplexity:	MEDIUM
authentication:	SINGLE
confidentialityImpact:	NONE
integrityImpact:	PARTIAL
availabilityImpact:	PARTIAL
exploitabilityScore:	6.8
impactScore:	4.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.9
VULHUB:	VHN-411083
severity:	MEDIUM
baseScore:	4.9
vectorString:	AV:N/AC:M/AU:S/C:N/I:P/A:P
accessVector:	NETWORK
accessComplexity:	MEDIUM
authentication:	SINGLE
confidentialityImpact:	NONE
integrityImpact:	PARTIAL
availabilityImpact:	PARTIAL
exploitabilityScore:	6.8
impactScore:	4.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

nvd@nist.gov:	CVE-2022-22514
baseSeverity:	HIGH
baseScore:	7.1
vectorString:	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	LOW
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	NONE
integrityImpact:	LOW
availabilityImpact:	HIGH
exploitabilityScore:	2.8
impactScore:	4.2
version:	3.1
Trust: 2.0
NVD:	CVE-2022-22514
baseSeverity:	HIGH
baseScore:	7.1
vectorString:	CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	LOW
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	NONE
integrityImpact:	LOW
availabilityImpact:	HIGH
exploitabilityScore:	NONE
impactScore:	NONE
version:	3.0
Trust: 0.8

sources: VULHUB: VHN-411083 // VULMON: CVE-2022-22514 // JVNDB: JVNDB-2022-008142 // CNNVD: CNNVD-202204-2621 // NVD: CVE-2022-22514 // NVD: CVE-2022-22514

PROBLEMTYPE DATA

problemtype:	CWE-822	Trust: 1.1
problemtype:	CWE-119	Trust: 1.0
problemtype:	unreliable pointer dereference (CWE-822) [ others ]	Trust: 0.8

sources: VULHUB: VHN-411083 // JVNDB: JVNDB-2022-008142 // NVD: CVE-2022-22514

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-202204-2621

TYPE

buffer error

Trust: 0.6

sources: CNNVD: CNNVD-202204-2621

PATCH

title:	CODESYS Buffer error vulnerability fix	url:	http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=189800	Trust: 0.6
title:	CVE-2022-XXXX	url:	https://github.com/AlphabugX/CVE-2022-23305	Trust: 0.1
title:	CVE-2022-XXXX	url:	https://github.com/AlphabugX/CVE-2022-RCE	Trust: 0.1

sources: VULMON: CVE-2022-22514 // CNNVD: CNNVD-202204-2621

EXTERNAL IDS

db:	NVD	id:	CVE-2022-22514	Trust: 3.4
db:	JVNDB	id:	JVNDB-2022-008142	Trust: 0.8
db:	CNNVD	id:	CNNVD-202204-2621	Trust: 0.6
db:	VULHUB	id:	VHN-411083	Trust: 0.1
db:	VULMON	id:	CVE-2022-22514	Trust: 0.1

sources: VULHUB: VHN-411083 // VULMON: CVE-2022-22514 // JVNDB: JVNDB-2022-008142 // CNNVD: CNNVD-202204-2621 // NVD: CVE-2022-22514

REFERENCES

url:	https://customers.codesys.com/index.php?eid=dumpfile&t=f&f=17093&token=15cd8424832ea10dcd4873a409a09a539ee381ca&download=	Trust: 2.5
url:	https://nvd.nist.gov/vuln/detail/cve-2022-22514	Trust: 0.8
url:	https://cxsecurity.com/cveshow/cve-2022-22514/	Trust: 0.6
url:	https://customers.codesys.com/index.php?eid=dumpfile&t=f&f=17093&token=15cd8424832ea10dcd4873a409a09a539ee381ca&download=	Trust: 0.1
url:	https://cwe.mitre.org/data/definitions/822.html	Trust: 0.1
url:	https://nvd.nist.gov	Trust: 0.1
url:	https://github.com/alphabugx/cve-2022-23305	Trust: 0.1

sources: VULHUB: VHN-411083 // VULMON: CVE-2022-22514 // JVNDB: JVNDB-2022-008142 // CNNVD: CNNVD-202204-2621 // NVD: CVE-2022-22514

SOURCES

db:	VULHUB	id:	VHN-411083
db:	VULMON	id:	CVE-2022-22514
db:	JVNDB	id:	JVNDB-2022-008142
db:	CNNVD	id:	CNNVD-202204-2621
db:	NVD	id:	CVE-2022-22514

LAST UPDATE DATE

2024-11-23T22:10:48.063000+00:00

SOURCES UPDATE DATE

db:	VULHUB	id:	VHN-411083	date:	2022-05-10T00:00:00
db:	VULMON	id:	CVE-2022-22514	date:	2022-05-10T00:00:00
db:	JVNDB	id:	JVNDB-2022-008142	date:	2023-07-24T08:23:00
db:	CNNVD	id:	CNNVD-202204-2621	date:	2022-04-28T00:00:00
db:	NVD	id:	CVE-2022-22514	date:	2024-11-21T06:46:56.033

SOURCES RELEASE DATE

db:	VULHUB	id:	VHN-411083	date:	2022-04-07T00:00:00
db:	VULMON	id:	CVE-2022-22514	date:	2022-04-07T00:00:00
db:	JVNDB	id:	JVNDB-2022-008142	date:	2023-07-24T00:00:00
db:	CNNVD	id:	CNNVD-202204-2621	date:	2022-04-07T00:00:00
db:	NVD	id:	CVE-2022-22514	date:	2022-04-07T19:15:08.133