How severe is CVE-2022-2790?

CVE-2022-2790 has a CVSS v3 score of 5.9 (MEDIUM).

CVE-2022-2790

Name: electric\'s_proficy
Author: emerson

5.9MEDIUM

Emerson Electric's Proficy Machine Edition Version 9.00 and prior is vulenrable to CWE-347 Improper Verification of Cryptographic Signature, and does not properly verify compiled logic (PDT files) and

Опубликовано: 8/19/2022Обновлено: 11/21/2024

Описание

Emerson Electric's Proficy Machine Edition Version 9.00 and prior is vulenrable to CWE-347 Improper Verification of Cryptographic Signature, and does not properly verify compiled logic (PDT files) and data blocks data (BLD/BLK files).

ИИ-АнализНа базе ИИ

Затронутые продукты

emersonelectric\'s_proficy

Ссылки

https://www.cisa.gov/uscert/ics/advisories/icsa-22-228-06
Third Party AdvisoryUS Government Resource
https://www.cisa.gov/uscert/ics/advisories/icsa-22-228-06
Third Party AdvisoryUS Government Resource