How severe is CVE-2022-2179?

CVE-2022-2179 has a CVSS v3 score of 6.5 (MEDIUM).

CVE-2022-2179

6.5MEDIUM

The X-Frame-Options header in Rockwell Automation MicroLogix 1100/1400 Versions 21.007 and prior is not configured in the HTTP response, which could allow clickjacking attacks.

Опубликовано: 7/20/2022Обновлено: 11/21/2024

Описание

The X-Frame-Options header in Rockwell Automation MicroLogix 1100/1400 Versions 21.007 and prior is not configured in the HTTP response, which could allow clickjacking attacks.

ИИ-АнализНа базе ИИ

Затронутые продукты

rockwellautomationmicrologix_1100_firmware

rockwellautomationmicrologix_1100

rockwellautomationmicrologix_1400_firmware

rockwellautomationmicrologix_1400

Ссылки

https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/1135994
Permissions RequiredVendor Advisory
https://www.cisa.gov/uscert/ics/advisories/icsa-22-188-01
Third Party AdvisoryUS Government Resource
https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/1135994
Permissions RequiredVendor Advisory
https://www.cisa.gov/uscert/ics/advisories/icsa-22-188-01
Third Party AdvisoryUS Government Resource