CVE-2022-22513 : An authenticated remote attacker can cause a null pointer dereference in the Cmp

An authenticated remote attacker can cause a null pointer dereference in the CmpSettings component of the affected CODESYS products which leads to a crash.

Published 2022-04-07 19:15:08

Updated 2022-05-10 16:00:33

Source CERT VDE

View at NVD, CVE.org

Vulnerability category: Memory Corruption

Products affected by CVE-2022-22513

Codesys » Control Win Sl
Versions before (<) 3.5.18.0
cpe:2.3:a:codesys:control_win_sl:*:*:*:*:*:*:*:*
Matching versions
Codesys » Hmi Sl
Versions before (<) 3.5.18.0
cpe:2.3:a:codesys:hmi_sl:*:*:*:*:*:*:*:*
Matching versions
Codesys » Control For Raspberry Pi Sl
Versions before (<) 4.5.0.0
cpe:2.3:a:codesys:control_for_raspberry_pi_sl:*:*:*:*:*:*:*:*
Matching versions
Codesys » Control For Empc-a/imx6 Sl
Versions before (<) 4.5.0.0
cpe:2.3:a:codesys:control_for_empc-a\/imx6_sl:*:*:*:*:*:*:*:*
Matching versions
Codesys » Control For Iot2000 Sl
Versions before (<) 4.5.0.0
cpe:2.3:a:codesys:control_for_iot2000_sl:*:*:*:*:*:*:*:*
Matching versions
Codesys » Control For Linux Sl
Versions before (<) 4.5.0.0
cpe:2.3:a:codesys:control_for_linux_sl:*:*:*:*:*:*:*:*
Matching versions
Codesys » Control For Pfc100 Sl
Versions before (<) 4.5.0.0
cpe:2.3:a:codesys:control_for_pfc100_sl:*:*:*:*:*:*:*:*
Matching versions
Codesys » Control For Beaglebone Sl
Versions before (<) 4.5.0.0
cpe:2.3:a:codesys:control_for_beaglebone_sl:*:*:*:*:*:*:*:*
Matching versions
Codesys » Control For Pfc200 Sl
Versions before (<) 4.5.0.0
cpe:2.3:a:codesys:control_for_pfc200_sl:*:*:*:*:*:*:*:*
Matching versions
Codesys » Control Rte Sl
Versions before (<) 3.5.18.0
cpe:2.3:a:codesys:control_rte_sl:*:*:*:*:*:*:*:*
Matching versions
Codesys » Control Rte Sl (for Beckhoff Cx)
Versions before (<) 3.5.18.0
cpe:2.3:a:codesys:control_rte_sl_\(for_beckhoff_cx\):*:*:*:*:*:*:*:*
Matching versions
Codesys » Gateway
Versions before (<) 3.5.18.0
cpe:2.3:a:codesys:gateway:*:*:*:*:*:*:*:*
Matching versions
Codesys » Development System
Versions before (<) 3.5.18.0
cpe:2.3:a:codesys:development_system:*:*:*:*:*:*:*:*
Matching versions
Codesys » Control Runtime System Toolkit
Versions before (<) 3.5.18.0
cpe:2.3:a:codesys:control_runtime_system_toolkit:*:*:*:*:*:*:*:*
Matching versions
Codesys » Embedded Target Visu Toolkit
Versions before (<) 3.5.18.0
cpe:2.3:a:codesys:embedded_target_visu_toolkit:*:*:*:*:*:*:*:*
Matching versions
Codesys » Remote Target Visu Toolkit
Versions before (<) 3.5.18.0
cpe:2.3:a:codesys:remote_target_visu_toolkit:*:*:*:*:*:*:*:*
Matching versions
Codesys » Control For Plcnext Sl
Versions before (<) 4.5.0.0
cpe:2.3:a:codesys:control_for_plcnext_sl:*:*:*:*:*:*:*:*
Matching versions
Codesys » Control For Wago Touch Panels 600 Sl
Versions before (<) 4.5.0.0
cpe:2.3:a:codesys:control_for_wago_touch_panels_600_sl:*:*:*:*:*:*:*:*
Matching versions
Codesys » Edge Gateway » For Linux
Versions before (<) 4.5.0.0
cpe:2.3:a:codesys:edge_gateway:*:*:*:*:*:linux:*:*
Matching versions
Codesys » Edge Gateway » For Windows
Versions before (<) 3.5.18.0
cpe:2.3:a:codesys:edge_gateway:*:*:*:*:*:windows:*:*
Matching versions
Codesys » Control For Beckhoff Cx9020
Versions before (<) 4.5.0.0
cpe:2.3:a:codesys:control_for_beckhoff_cx9020:*:*:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2022-22513

EPSS FAQ

0.57%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 67 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2022-22513

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
3.5	LOW	AV:N/AC:M/Au:S/C:N/I:N/A:P	6.8	2.9	NIST
Access Vector: Network Access Complexity: Medium Authentication: Single Confidentiality Impact: None Integrity Impact: None Availability Impact: Partial
6.5	MEDIUM	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H	2.8	3.6	CERT VDE
Attack Vector: Network Attack Complexity: Low Privileges Required: Low User Interaction: None Scope: Unchanged Confidentiality: None Integrity: None Availability: High
6.5	MEDIUM	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H	2.8	3.6	NIST
Attack Vector: Network Attack Complexity: Low Privileges Required: Low User Interaction: None Scope: Unchanged Confidentiality: None Integrity: None Availability: High

CWE ids for CVE-2022-22513

CWE-476 NULL Pointer Dereference

The product dereferences a pointer that it expects to be valid but is NULL.

Assigned by: info@cert.vde.com (Primary)

References for CVE-2022-22513

https://customers.codesys.com/index.php?eID=dumpFile&t=f&f=17093&token=15cd8424832ea10dcd4873a409a09a539ee381ca&download=

Vendor Advisory

CVEs referencing this url

Jump to

Vulnerability Details : CVE-2022-22513

Products affected by CVE-2022-22513

Exploit prediction scoring system (EPSS) score for CVE-2022-22513

CVSS scores for CVE-2022-22513

CWE ids for CVE-2022-22513

References for CVE-2022-22513