How severe is CVE-2022-2179?

CVE-2022-2179 has a CVSS v3 score of 6.5 (MEDIUM).

CVE-2022-2179

6.5MEDIUM

The X-Frame-Options header in Rockwell Automation MicroLogix 1100/1400 Versions 21.007 and prior is not configured in the HTTP response, which could allow clickjacking attacks.

发布于: 7/20/2022更新于: 11/21/2024

描述

The X-Frame-Options header in Rockwell Automation MicroLogix 1100/1400 Versions 21.007 and prior is not configured in the HTTP response, which could allow clickjacking attacks.

AI分析AI驱动

受影响产品

rockwellautomationmicrologix_1100_firmware

rockwellautomationmicrologix_1100

rockwellautomationmicrologix_1400_firmware

rockwellautomationmicrologix_1400

参考资料

https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/1135994
Permissions RequiredVendor Advisory
https://www.cisa.gov/uscert/ics/advisories/icsa-22-188-01
Third Party AdvisoryUS Government Resource
https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/1135994
Permissions RequiredVendor Advisory
https://www.cisa.gov/uscert/ics/advisories/icsa-22-188-01
Third Party AdvisoryUS Government Resource