#VU59904 Out-of-bounds read in ICONICS, Inc. products - CVE-2022-23130

Cybersecurity Help s.r.o.

Published: 2022-01-21

Vulnerability identifier: #VU59904

Vulnerability risk: Low

CVSSv4.0: 0.7 [CVSS:4.0/AV:A/AC:L/AT:P/PR:H/UI:A/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-23130

CWE-ID: CWE-125

Exploitation vector: Local network

Exploit availability: No

Vulnerable software:
ICONICS Suite
Server applications / SCADA systems
GENESIS64
Server applications / SCADA systems
Energy AnalytiX
Server applications / SCADA systems
Hyper Historian
Client/Desktop applications / Other client software
MobileHMI
Mobile applications / Apps for mobile phones

Vendor: ICONICS, Inc.

Description

The vulnerability allows a remote user to perform a denial of service (DoS) attack.

The vulnerability exists due to a boundary condition in the SQL query engine. A remote administrator on the local network can trigger out-of-bounds read error and cause a denial of service condition on the system.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

ICONICS Suite: 10.97

GENESIS64: 10.97

Hyper Historian: 10.97

Energy AnalytiX: 10.97

MobileHMI: 10.97

External links
https://ics-cert.us-cert.gov/advisories/icsa-22-020-01
https://iconics.com/Support/CERT

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote authenticated privileged user via the local network (LAN).

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Multiple vulnerabilities in Mitsubishi Electric MC Works64

Multiple vulnerabilities in ICONICS Product Suite