CVE-2022-3752

An unauthorized user could use a specially crafted sequence of Ethernet/IP messages, combined with heavy traffic loading to cause a denial-of-service condition in Rockwell Automation Logix controllers resulting in a major non-recoverable fault. If the target device becomes unavailable, a user would have to clear the fault and redownload the user project file to bring the device back online and continue normal operation.

CVSS v3 7.5 HIGH

7.5^/10

CVSS v3 : HIGH

Vector :

Exploitability : 3.9 / Impact : 3.6

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/1137664	Permissions Required Vendor Advisory

Configurations

Configuration 1 (hide)

AND

cpe:2.3:h:rockwellautomation:compactlogix_5480:-:*:*:*:*:*:*:*

cpe:2.3:o:rockwellautomation:compactlogix_5480_firmware:*:*:*:*:*:*:*:*

Configuration 2 (hide)

AND

cpe:2.3:h:rockwellautomation:compactlogix_5580:-:*:*:*:*:*:*:*

cpe:2.3:o:rockwellautomation:compactlogix_5580_firmware:*:*:*:*:*:*:*:*

Configuration 3 (hide)

AND

cpe:2.3:h:rockwellautomation:guardlogix_5580:-:*:*:*:*:*:*:*

cpe:2.3:o:rockwellautomation:guardlogix_5580_firmware:*:*:*:*:*:*:*:*

Configuration 4 (hide)

AND

cpe:2.3:h:rockwellautomation:compact_guardlogix_5380:-:*:*:*:*:*:*:*

cpe:2.3:o:rockwellautomation:compact_guardlogix_5380_firmware:*:*:*:*:*:*:*:*

Configuration 5 (hide)

AND

cpe:2.3:h:rockwellautomation:compactlogix_5380:-:*:*:*:*:*:*:*

cpe:2.3:o:rockwellautomation:compactlogix_5380_firmware:*:*:*:*:*:*:*:*

History

No history.

Information

Published : 2022-12-19 23:15

Updated : 2023-11-07 03:51

NVD link : CVE-2022-3752

Mitre link : CVE-2022-3752

CVE.ORG link : CVE-2022-3752

JSON object : View

Products Affected

rockwellautomation

compactlogix_5580
compactlogix_5380_firmware
compact_guardlogix_5380_firmware
compactlogix_5480
compactlogix_5480_firmware
guardlogix_5580
guardlogix_5580_firmware
compactlogix_5580_firmware
compact_guardlogix_5380
compactlogix_5380

CWE

NVD-CWE-noinfo CWE-20

Improper Input Validation

{"id": "CVE-2022-3752", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.5, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 3.9}, {"type": "Secondary", "source": "PSIRT@rockwellautomation.com", "cvssData": {"scope": "CHANGED", "version": "3.1", "baseScore": 8.6, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 4.0, "exploitabilityScore": 3.9}]}, "published": "2022-12-19T23:15:10.660", "references": [{"url": "https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/1137664", "tags": ["Permissions Required", "Vendor Advisory"], "source": "PSIRT@rockwellautomation.com"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-noinfo"}]}, {"type": "Secondary", "source": "PSIRT@rockwellautomation.com", "description": [{"lang": "en", "value": "CWE-20"}]}], "descriptions": [{"lang": "en", "value": "An unauthorized user could use a specially crafted sequence of Ethernet/IP messages, combined with heavy traffic \nloading to cause a denial-of-service condition in Rockwell Automation Logix controllers resulting in a major non-recoverable fault. If the target device becomes unavailable, a user would have to clear the fault and redownload \nthe user project file to bring the device back online and continue normal operation.\n\n\n"}, {"lang": "es", "value": "Un usuario no autorizado podr\u00eda utilizar una secuencia especialmente manipulada de mensajes Ethernet/IP, combinada con una gran carga de tr\u00e1fico, para provocar una condici\u00f3n de Denegaci\u00f3n de Servicio (DoS) en los controladores Logix de Rockwell Automation, lo que provocar\u00eda una falla importante no recuperable. Si el dispositivo de destino deja de estar disponible, el usuario tendr\u00eda que borrar la falla y volver a descargar el archivo de proyecto del usuario para volver a poner el dispositivo en l\u00ednea y continuar con el funcionamiento normal."}], "lastModified": "2023-11-07T03:51:46.130", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:rockwellautomation:compactlogix_5480:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "80F4F5BE-07DF-402A-BF98-34FBA6A11968"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:rockwellautomation:compactlogix_5480_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A3BB8945-AC46-463C-A7D9-15584AD0FA68", "versionStartIncluding": "32.011"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:rockwellautomation:compactlogix_5580:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "CEA62D6E-168F-4EEC-9E90-C679273C1CDB"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:rockwellautomation:compactlogix_5580_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EDD27C92-CC9B-4780-B7AC-8ECBE1FF7C77", "versionStartIncluding": "31.011"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:rockwellautomation:guardlogix_5580:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "006B7683-9FDF-4748-BA28-2EA22613E092"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:rockwellautomation:guardlogix_5580_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "25846D71-4F46-4C50-BB76-5D692DE9ACFE", "versionStartIncluding": "32.011"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:rockwellautomation:compact_guardlogix_5380:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "62414E65-73C7-4172-B7BF-F40A66AFBB90"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:rockwellautomation:compact_guardlogix_5380_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E187CC9F-3BFC-4AE3-A4E5-477416A16E24", "versionStartIncluding": "31.011"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:rockwellautomation:compactlogix_5380:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "EDD040ED-B44C-47D0-B4D4-729C378C4F68"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:rockwellautomation:compactlogix_5380_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "65D5D8EB-6A19-4849-988D-C3F65071B05F", "versionStartIncluding": "31.011"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "PSIRT@rockwellautomation.com"}