Vulnerability Details : CVE-2022-2338
Softing Secure Integration Server V1.22 is vulnerable to authentication bypass via a machine-in-the-middle attack. The default the administration interface is accessible via plaintext HTTP protocol, facilitating the attack. The HTTP request may contain the session cookie in the request, which may be captured for use in authenticating to the server.
Products affected by CVE-2022-2338
- cpe:2.3:a:softing:opc:5.2:*:*:*:*:*:*:*
- cpe:2.3:a:softing:edgeconnector:3.1:*:*:*:*:*:*:*
- cpe:2.3:a:softing:secure_integration_server:1.22:*:*:*:*:*:*:*
- cpe:2.3:a:softing:uagates:1.74:*:*:*:*:*:*:*
- cpe:2.3:a:softing:opc_ua_c\+\+_software_development_kit:6:*:*:*:*:*:*:*
- cpe:2.3:a:softing:edgeaggregator:3.1:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2022-2338
0.09%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 37 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2022-2338
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
5.7
|
MEDIUM | CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N |
2.1
|
3.6
|
ICS-CERT | |
5.3
|
MEDIUM | CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N |
1.6
|
3.6
|
NIST |
CWE ids for CVE-2022-2338
-
The product transmits sensitive or security-critical data in cleartext in a communication channel that can be sniffed by unauthorized actors.Assigned by: ics-cert@hq.dhs.gov (Primary)
References for CVE-2022-2338
-
https://www.cisa.gov/uscert/ics/advisories/icsa-22-228-04
Softing Secure Integration Server | CISAMitigation;Third Party Advisory;US Government Resource
-
https://industrial.softing.com/fileadmin/psirt/downloads/syt-2022-5.html
Mitigation;Vendor Advisory
Jump to