Lucene search

[email protected]CVE-2022-3929

HistoryJan 05, 2023 - 10:15 p.m.

CVE-2022-3929

2023-01-0522:15:09

CWE-319

[email protected]

web.nvd.nist.gov

cve-2022-3929

information security

communication protocol

corba

hitachi energy

foxman-un

unem

tcp/ip

vulnerability

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.5 High

AI Score

Confidence

High

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.002 Low

EPSS

Percentile

56.0%

JSON

Communication between the client and the server application of the affected products is partially done using CORBA (Common Object Request Broker Architecture) over TCP/IP. This protocol is not encrypted and allows tracing of internal messages.

This issue affects

FOXMAN-UN product: FOXMAN-UN R15B, FOXMAN-UN R15A, FOXMAN-UN R14B, FOXMAN-UN R14A, FOXMAN-UN R11B, FOXMAN-UN R11A, FOXMAN-UN R10C, FOXMAN-UN R9C;
UNEM product: UNEM R15B, UNEM R15A, UNEM R14B, UNEM R14A, UNEM R11B, UNEM R11A, UNEM R10C, UNEM R9C.

List of CPEs:

cpe:2.3:a:hitachienergy:foxman-un:R15B:::::::*
cpe:2.3:a:hitachienergy:foxman-un:R15A:::::::*
cpe:2.3:a:hitachienergy:foxman-un:R14B:::::::*
cpe:2.3:a:hitachienergy:foxman-un:R14A:::::::*
cpe:2.3:a:hitachienergy:foxman-un:R11B:::::::*
cpe:2.3:a:hitachienergy:foxman-un:R11A:::::::*
cpe:2.3:a:hitachienergy:foxman-un:R10C:::::::*
cpe:2.3:a:hitachienergy:foxman-un:R9C:::::::*
cpe:2.3:a:hitachienergy:unem:R15B:::::::*
cpe:2.3:a:hitachienergy:unem:R15A:::::::*
cpe:2.3:a:hitachienergy:unem:R14B:::::::*
cpe:2.3:a:hitachienergy:unem:R14A:::::::*
cpe:2.3:a:hitachienergy:unem:R11B:::::::*
cpe:2.3:a:hitachienergy:unem:R11A:::::::*
cpe:2.3:a:hitachienergy:unem:R10C:::::::*
cpe:2.3:a:hitachienergy:unem:R9C:::::::*

CPENameOperatorVersion
hitachienergy:foxman-unhitachienergy foxman-unltr16a
hitachienergy:foxman-unhitachienergy foxman-uneqr11a
hitachienergy:foxman-unhitachienergy foxman-uneqr15a
hitachienergy:foxman-unhitachienergy foxman-uneqr10c
hitachienergy:foxman-unhitachienergy foxman-uneqr14a
hitachienergy:foxman-unhitachienergy foxman-uneqr14b
hitachienergy:foxman-unhitachienergy foxman-uneqr15b
hitachienergy:foxman-unhitachienergy foxman-uneqr11b
hitachienergy:foxman-unhitachienergy foxman-uneqr9c
hitachienergy:unemhitachienergy unemltr16a

CPE	Name	Operator	Version
hitachienergy:foxman-un	hitachienergy foxman-un	lt	r16a
hitachienergy:foxman-un	hitachienergy foxman-un	eq	r11a
hitachienergy:foxman-un	hitachienergy foxman-un	eq	r15a
hitachienergy:foxman-un	hitachienergy foxman-un	eq	r10c
hitachienergy:foxman-un	hitachienergy foxman-un	eq	r14a
hitachienergy:foxman-un	hitachienergy foxman-un	eq	r14b
hitachienergy:foxman-un	hitachienergy foxman-un	eq	r15b
hitachienergy:foxman-un	hitachienergy foxman-un	eq	r11b
hitachienergy:foxman-un	hitachienergy foxman-un	eq	r9c
hitachienergy:unem	hitachienergy unem	lt	r16a

Rows per page:

1-10 of 181

References

search.abb.com/library/Download.aspx?DocumentID=8DBD000083&LanguageCode=en&DocumentPartId=&Action=Launch

search.abb.com/library/Download.aspx?DocumentID=8DBD000084&LanguageCode=en&DocumentPartId=&Action=Launch

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.5 High

AI Score

Confidence

High

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.002 Low

EPSS

Percentile

56.0%

JSON

Related for CVE-2022-3929

prion1 cvelist1 ics2