CVE-2022-3738 : The vulnerability allows a remote unauthenticated attacker to download a backup

The vulnerability allows a remote unauthenticated attacker to download a backup file, if one exists. That backup file might contain sensitive information like credentials and cryptographic material. A valid user has to create a backup after the last reboot for this attack to be successfull.

Published 2023-01-19 12:15:11

Updated 2023-01-27 17:18:21

Source CERT VDE

View at NVD, CVE.org

Products affected by CVE-2022-3738

Wago » Pfc200 Firmware
Versions from including (>=) 16 and up to, including, (<=) 22
cpe:2.3:o:wago:pfc200_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Wago » Pfc200 » Version: N/A
Wago » Pfc100 Firmware
Versions from including (>=) 16 and up to, including, (<=) 22
cpe:2.3:o:wago:pfc100_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Wago » Pfc100 » Version: N/A
Wago » Touch Panel 600 Standard Firmware
Versions from including (>=) 16 and up to, including, (<=) 22
cpe:2.3:o:wago:touch_panel_600_standard_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Wago » Touch Panel 600 Standard » Version: N/A
Wago » Touch Panel 600 Advanced Firmware
Versions from including (>=) 16 and up to, including, (<=) 22
cpe:2.3:o:wago:touch_panel_600_advanced_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Wago » Touch Panel 600 Advanced » Version: N/A
Wago » Touch Panel 600 Marine Firmware
Versions from including (>=) 16 and up to, including, (<=) 22
cpe:2.3:o:wago:touch_panel_600_marine_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Wago » Touch Panel 600 Marine » Version: N/A
Wago » Cc100 Firmware
Versions from including (>=) 16 and up to, including, (<=) 22
cpe:2.3:o:wago:cc100_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Wago » Cc100 » Version: N/A
Wago » Edge Controller Firmware
Versions from including (>=) 16 and up to, including, (<=) 22
cpe:2.3:o:wago:edge_controller_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Wago » Edge Controller » Version: N/A

Exploit prediction scoring system (EPSS) score for CVE-2022-3738

EPSS FAQ

0.09%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 23 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2022-3738

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
5.4	MEDIUM	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N	2.8	2.5	CERT VDE
Attack Vector: Network Attack Complexity: Low Privileges Required: None User Interaction: Required Scope: Unchanged Confidentiality: Low Integrity: Low Availability: None
5.9	MEDIUM	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N	2.2	3.6	NIST
Attack Vector: Network Attack Complexity: High Privileges Required: None User Interaction: None Scope: Unchanged Confidentiality: High Integrity: None Availability: None

CWE ids for CVE-2022-3738

CWE-306 Missing Authentication for Critical Function

The product does not perform any authentication for functionality that requires a provable user identity or consumes a significant amount of resources.

Assigned by: info@cert.vde.com (Primary)

References for CVE-2022-3738

https://cert.vde.com/en/advisories/VDE-2022-054/

VDE-2022-054 | CERT@VDE
Third Party Advisory

Jump to

Vulnerability Details : CVE-2022-3738

Products affected by CVE-2022-3738

Exploit prediction scoring system (EPSS) score for CVE-2022-3738

CVSS scores for CVE-2022-3738

CWE ids for CVE-2022-3738

References for CVE-2022-3738