Multiple vulnerabilities in GE CIMPLICITY



Published: 2022-11-23
Risk High
Patch available NO
Number of vulnerabilities 5
CVE-ID CVE-2022-2002
CVE-2022-3084
CVE-2022-2952
CVE-2022-2948
CVE-2022-3092
CWE-ID CWE-319
CWE-824
CWE-122
CWE-787
Exploitation vector Network
Public exploit N/A
Vulnerable software
Subscribe
CIMPLICITY
Server applications / SCADA systems

Vendor GE Digital

Security Bulletin

This security bulletin contains information about 5 vulnerabilities.

1) Cleartext transmission of sensitive information

EUVDB-ID: #VU64477

Risk: Medium

CVSSv3.1:

CVE-ID: CVE-2022-2002

CWE-ID: CWE-319 - Cleartext Transmission of Sensitive Information

Exploit availability: No

Description

The vulnerability allows a remote attacker to gain access to sensitive information.

The vulnerability exists due to software uses insecure communication channel to transmit sensitive information. A remote attacker can use a specially crafted Ethernet packet and gain access to sensitive data.

Mitigation

Cybersecurity Help is currently unaware of any official solution to address this vulnerability.

Vulnerable software versions

CIMPLICITY: 2022


CPE2.3 External links

http://ics-cert.us-cert.gov/advisories/icsa-22-326-04

Q & A

Can this vulnerability be exploited remotely?

How the attacker can exploit this vulnerability?

Is there known malware, which exploits this vulnerability?

2) Access of Uninitialized Pointer

EUVDB-ID: #VU69522

Risk: High

CVSSv3.1:

CVE-ID: CVE-2022-3084

CWE-ID: CWE-824 - Access of Uninitialized Pointer

Exploit availability: No

Description

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to uninitialized pointer access when data from a faulting address controls code flow starting at gmmiObj!CGmmiRootOptionTable. A remote attacker can execute arbitrary code on the target system.

Mitigation

Cybersecurity Help is currently unaware of any official solution to address this vulnerability.

Vulnerable software versions

CIMPLICITY: 2022


CPE2.3 External links

http://ics-cert.us-cert.gov/advisories/icsa-22-326-04

Q & A

Can this vulnerability be exploited remotely?

How the attacker can exploit this vulnerability?

Is there known malware, which exploits this vulnerability?

3) Access of Uninitialized Pointer

EUVDB-ID: #VU69523

Risk: High

CVSSv3.1:

CVE-ID: CVE-2022-2952

CWE-ID: CWE-824 - Access of Uninitialized Pointer

Exploit availability: No

Description

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to uninitialized pointer access when data from a faulting address controls code flow starting at gmmiObj!CGmmiOptionContainer. A remote attacker can execute arbitrary code on the target system.

Mitigation

Cybersecurity Help is currently unaware of any official solution to address this vulnerability.

Vulnerable software versions

CIMPLICITY: 2022


CPE2.3 External links

http://ics-cert.us-cert.gov/advisories/icsa-22-326-04

Q & A

Can this vulnerability be exploited remotely?

How the attacker can exploit this vulnerability?

Is there known malware, which exploits this vulnerability?

4) Heap-based buffer overflow

EUVDB-ID: #VU69525

Risk: High

CVSSv3.1:

CVE-ID: CVE-2022-2948

CWE-ID: CWE-122 - Heap-based Buffer Overflow

Exploit availability: No

Description

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to a boundary error. A remote attacker can pass specially crafted data to the application, trigger a heap-based buffer overflow and execute arbitrary code on the target system.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

Mitigation

Cybersecurity Help is currently unaware of any official solution to address this vulnerability.

Vulnerable software versions

CIMPLICITY: 2022


CPE2.3 External links

http://ics-cert.us-cert.gov/advisories/icsa-22-326-04

Q & A

Can this vulnerability be exploited remotely?

How the attacker can exploit this vulnerability?

Is there known malware, which exploits this vulnerability?

5) Out-of-bounds write

EUVDB-ID: #VU69529

Risk: High

CVSSv3.1:

CVE-ID: CVE-2022-3092

CWE-ID: CWE-787 - Out-of-bounds write

Exploit availability: No

Description

The vulnerability allows a remote attacker to compromise vulnerable system.

The vulnerability exists due to a boundary error when processing untrusted input. A remote attacker can trigger out-of-bounds write and execute arbitrary code on the target system.

Mitigation

Cybersecurity Help is currently unaware of any official solution to address this vulnerability.

Vulnerable software versions

CIMPLICITY: 2022


CPE2.3 External links

http://ics-cert.us-cert.gov/advisories/icsa-22-326-04

Q & A

Can this vulnerability be exploited remotely?

How the attacker can exploit this vulnerability?

Is there known malware, which exploits this vulnerability?



###SIDEBAR###