How severe is CVE-2022-2791?

CVE-2022-2791 has a CVSS v3 score of 5.9 (MEDIUM).

CVE-2022-2791

Name: proficy
Author: emerson

5.9MEDIUM

Emerson Electric's Proficy Machine Edition Version 9.00 and prior is vulnerable to CWE-434 Unrestricted Upload of File with Dangerous Type, and will upload any file written into the PLC logic folder t

公開日: 11/22/2022更新日: 11/21/2024

説明

Emerson Electric's Proficy Machine Edition Version 9.00 and prior is vulnerable to CWE-434 Unrestricted Upload of File with Dangerous Type, and will upload any file written into the PLC logic folder to the connected PLC.

AI分析AIによる分析

影響を受ける製品

emersonproficy

参照

https://www.cisa.gov/uscert/ics/advisories/icsa-22-228-06
Third Party AdvisoryUS Government Resource
https://www.cisa.gov/uscert/ics/advisories/icsa-22-228-06
Third Party AdvisoryUS Government Resource