How severe is CVE-2022-2790?

CVE-2022-2790 has a CVSS v3 score of 5.9 (MEDIUM).

CVE-2022-2790

Name: electric\'s_proficy
Author: emerson

5.9MEDIUM

Emerson Electric's Proficy Machine Edition Version 9.00 and prior is vulenrable to CWE-347 Improper Verification of Cryptographic Signature, and does not properly verify compiled logic (PDT files) and

Publicado: 8/19/2022Actualizado: 11/21/2024

Descripción

Emerson Electric's Proficy Machine Edition Version 9.00 and prior is vulenrable to CWE-347 Improper Verification of Cryptographic Signature, and does not properly verify compiled logic (PDT files) and data blocks data (BLD/BLK files).

Análisis IAImpulsado por IA

Productos Afectados

emersonelectric\'s_proficy

Referencias

https://www.cisa.gov/uscert/ics/advisories/icsa-22-228-06
Third Party AdvisoryUS Government Resource
https://www.cisa.gov/uscert/ics/advisories/icsa-22-228-06
Third Party AdvisoryUS Government Resource