CVE-2022-22518— A bug in the CODESYS V3 CmpUserMgr component fails to correctly apply a security policy.
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2022-22518
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
A bug in the CODESYS V3 CmpUserMgr component fails to correctly apply a security policy.
Source: NVD (National Vulnerability Database)
Vulnerability Description
A bug in CmpUserMgr component can lead to only partially applied security policies. This can result in enabled, anonymous access to components part of the applied security policy.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
Source: NVD (National Vulnerability Database)
Vulnerability Type
缺省权限不正确
Source: NVD (National Vulnerability Database)
Vulnerability Title
Schneider Electric CmpUserMgr 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Schneider Electric CmpUserMgr是法国施耐德电气(Schneider Electric)公司的一个库。提供对用户管理的访问。 Schneider Electric CmpUserMgr 组件存在安全漏洞,该漏洞源于CmpUserMgr 组件中的错误可能导致仅部分应用安全策略。这可能导致对应用的安全策略的组件部分启用匿名访问。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| CODESYS | CODESYS Control for BeagleBone SL | V4.5.0.0 ~ V4.5.0.0 | - | |
| CODESYS | CODESYS Control for Beckhoff CX9020 SL | V4.5.0.0 ~ V4.5.0.0 | - | |
| CODESYS | CODESYS Control for emPC-A/iMX6 SL | V4.5.0.0 ~ V4.5.0.0 | - | |
| CODESYS | CODESYS Control for IOT2000 SL | V4.5.0.0 ~ V4.5.0.0 | - | |
| CODESYS | CODESYS Control for Linux SL | V4.5.0.0 ~ V4.5.0.0 | - | |
| CODESYS | CODESYS Control for PFC100 SL | V4.5.0.0 ~ V4.5.0.0 | - | |
| CODESYS | CODESYS Control for PFC200 SL | V4.5.0.0 ~ V4.5.0.0 | - | |
| CODESYS | CODESYS Control for Raspberry Pi SL | V4.5.0.0 ~ V4.5.0.0 | - | |
| CODESYS | CODESYS Control for WAGO Touch Panels 600 SL | V4.5.0.0 ~ V4.5.0.0 | - | |
| CODESYS | CODESYS Control Runtime System Toolkit | V3.5.18.0 ~ V3.5.18.0 | - |
II. Public POCs for CVE-2022-22518
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2022-22518
请登录查看更多情报信息。
Same Patch Batch · CODESYS · 2022-04-07 · 7 CVEs total
| CVE-2022-22515 | 8.1 HIGH | A component of the CODESYS Control runtime system allows read and write access to configur |
| CVE-2022-22516 | 7.8 HIGH | CODESYS driver SysDrv3S allows SYSTEM users on Microsoft Windows to read and write in rest |
| CVE-2022-22519 | 7.5 HIGH | Special HTTP(s) Requests can cause a buffer-read causing a crash of the webserver and the |
| CVE-2022-22517 | 7.5 HIGH | Communication Components in multiple CODESYS products vulnerable to communication channel |
| CVE-2022-22514 | 7.1 HIGH | Untrusted Pointer Dereference in multiple CODESYS products can lead to a DoS. |
| CVE-2022-22513 | 6.5 MEDIUM | Null Pointer Dereference in multiple CODESYS products can lead to a DoS. |
IV. Related Vulnerabilities
Same product: CODESYS Control for BeagleBone SL
- CVE-2025-0694
CODESYS Control V3 removable media path traversal - CVE-2024-8175
CODESYS: web server vulnerable to DoS - CVE-2024-5000
CODESYS: Incorrect calculation of buffer size can cause DoS - CVE-2023-6357
OS Command Injection in multiple CODESYS products - CVE-2022-4046
CODESYS: Improper memory restrictions fro CODESYS Control
Same vendor: CODESYS
- CVE-2026-35225
Improper timeout handling in CODESYS EtherNetIP - CVE-2026-3509
CODESYS Control Audit Log Format String DoS - CVE-2025-41660
CODESYS Control Boot Application Replacement Enables Code Ex - CVE-2026-2364
CODESYS Installer TOCTOU Privilege Escalation - CVE-2025-41700
CODESYS Development System - Deserialization of Untrusted Da
Same weakness: CWE-276
- CVE-2026-0539
Local Privilege Escalation in pcvisit service client - CVE-2026-6823
HKUDS OpenHarness Insecure Default Remote Channel Allowlist - CVE-2026-6819
HKUDS OpenHarness Plugin Management Command Exposure - CVE-2026-39454
SKYSEA Client View 安全漏洞 - CVE-2026-30811
Missing Authorization in Configuration Ajax Endpoint leads t
V. Comments for CVE-2022-22518
No comments yet