ID
VAR-202211-1445
CVE
CVE-2022-3092
TITLE
GE CIMPLICITY HMI/SCADA Software Buffer error vulnerability
Trust: 0.6
sources:
CNNVD: CNNVD-202211-3432
DESCRIPTION
GE CIMPICITY versions 2022 and prior is vulnerable to an out-of-bounds write, which could allow an attacker to execute arbitrary code. GE CIMPLICITY
Trust: 0.99
sources:
NVD: CVE-2022-3092 //
VULMON: CVE-2022-3092
AFFECTED PRODUCTS
| vendor: | ge | model: | cimplicity | scope: | lte | version: | 2022 | Trust: 1.0 |
sources:
NVD: CVE-2022-3092
CVSS
SEVERITY | CVSSV2 | CVSSV3 | |||||||||||||||||||||||||||||||||||||||||
|
|
sources:
CNNVD: CNNVD-202211-3432 //
NVD: CVE-2022-3092
PROBLEMTYPE DATA
| problemtype: | CWE-787 | Trust: 1.0 |
sources:
NVD: CVE-2022-3092
THREAT TYPE
local
Trust: 0.6
sources:
CNNVD: CNNVD-202211-3432
TYPE
buffer error
Trust: 0.6
sources:
CNNVD: CNNVD-202211-3432
CONFIGURATIONS
sources:
NVD: CVE-2022-3092
PATCH
| title: | GE CIMPLICITY HMI/SCADA Software Buffer error vulnerability fix | url: | http://123.124.177.30/web/xxk/bdxqbyid.tag?id=216962 | Trust: 0.6 |
sources:
CNNVD: CNNVD-202211-3432
EXTERNAL IDS
| db: | ICS CERT | id: | ICSA-22-326-04 | Trust: 1.7 |
| db: | NVD | id: | CVE-2022-3092 | Trust: 1.7 |
| db: | AUSCERT | id: | ESB-2022.6117 | Trust: 0.6 |
| db: | CNNVD | id: | CNNVD-202211-3432 | Trust: 0.6 |
| db: | VULMON | id: | CVE-2022-3092 | Trust: 0.1 |
sources:
VULMON: CVE-2022-3092 //
CNNVD: CNNVD-202211-3432 //
NVD: CVE-2022-3092
REFERENCES
| url: | https://www.cisa.gov/uscert/ics/advisories/icsa-22-326-04 | Trust: 1.7 |
| url: | https://www.auscert.org.au/bulletins/esb-2022.6117 | Trust: 0.6 |
| url: | https://cxsecurity.com/cveshow/cve-2022-3092/ | Trust: 0.6 |
sources:
VULMON: CVE-2022-3092 //
CNNVD: CNNVD-202211-3432 //
NVD: CVE-2022-3092
SOURCES
| db: | VULMON | id: | CVE-2022-3092 |
| db: | CNNVD | id: | CNNVD-202211-3432 |
| db: | NVD | id: | CVE-2022-3092 |
LAST UPDATE DATE
2022-12-13T00:38:58.505000+00:00
SOURCES UPDATE DATE
| db: | CNNVD | id: | CNNVD-202211-3432 | date: | 2022-12-12T00:00:00 |
| db: | NVD | id: | CVE-2022-3092 | date: | 2022-12-09T20:22:00 |
SOURCES RELEASE DATE
| db: | CNNVD | id: | CNNVD-202211-3432 | date: | 2022-11-23T00:00:00 |
| db: | NVD | id: | CVE-2022-3092 | date: | 2022-12-08T00:15:00 |