Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2022-30791— CODESYS V3: CmpBlkDrvTcp allows unauthenticated attackers to block all its available TCP connections

CVSS 7.5 · High EPSS 0.39% · P60
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2022-30791

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
CODESYS V3: CmpBlkDrvTcp allows unauthenticated attackers to block all its available TCP connections
Source: NVD (National Vulnerability Database)
Vulnerability Description
In CmpBlkDrvTcp of CODESYS V3 in multiple versions an uncontrolled ressource consumption allows an unauthorized attacker to block new TCP connections. Existing connections are not affected.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Source: NVD (National Vulnerability Database)
Vulnerability Type
未加控制的资源消耗(资源穷尽)
Source: NVD (National Vulnerability Database)
Vulnerability Title
3S-Smart Software Solutions CODESYS 资源管理错误漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
CODESYS是德国3S-Smart Software Solutions的一套控制器开发系统 3S-Smart Software Solutions CODESYS V3 CmpBlkDrvTcp 存在资源管理错误漏洞,未经授权攻击者利用该漏洞可以阻止新的 TCP 连接。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
CODESYSCODESYS Control RTE (SL) V3 ~ V3.5.18.20 -
CODESYSCODESYS Control RTE (for Beckhoff CX) SL V3 ~ V3.5.18.20 -
CODESYSCODESYS Control Win (SL) V3 ~ V3.5.18.20 -
CODESYSCODESYS Gateway V3 ~ V3.5.18.20 -
CODESYSCODESYS Edge Gateway for Windows V3 ~ V3.5.18.20 -
CODESYSCODESYS HMI (SL) V3 ~ V3.5.18.20 -
CODESYSCODESYS Development System V3 V3 ~ V3.5.18.10 -
CODESYSCODESYS Control Runtime System Toolkit V3 ~ V3.5.18.20 -
CODESYSCODESYS Embedded Target Visu Toolkit V3 ~ V3.5.18.20 -
CODESYSCODESYS Remote Target Visu Toolkit V3 ~ V3.5.18.20 -
CODESYSCODESYS Control for BeagleBone SL V3 ~ V4.5.0.0 -
CODESYSCODESYS Control for Beckhoff CX9020 SL V3 ~ V4.5.0.0 -
CODESYSCODESYS Control for emPC-A/iMX6 SL V3 ~ V4.5.0.0 -
CODESYSCODESYS Control for IOT2000 SL V3 ~ V4.5.0.0 -
CODESYSCODESYS Control for Linux SL V3 ~ V4.5.0.0 -
CODESYSCODESYS Control for PFC100 SL V3 ~ V4.5.0.0 -
CODESYSCODESYS Control for PFC200 SL V3 ~ V4.5.0.0 -
CODESYSCODESYS Control for PLCnext SL V3 ~ V4.5.0.0 -
CODESYSCODESYS Control for Raspberry Pi SL V3 ~ V4.5.0.0 -
CODESYSCODESYS Control for WAGO Touch Panels 600 SL V3 ~ V4.5.0.0 -
CODESYSCODESYS Edge Gateway for Linux V3 ~ V4.5.0.0 -

II. Public POCs for CVE-2022-30791

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2022-30791

登录查看更多情报信息。

Same Patch Batch · CODESYS · 2022-07-11 · 3 CVEs total

CVE-2022-307927.5 HIGHCODESYS: CmpChannelServer, CmpChannelServerEmbedded allow unauthenticated attackers to blo
CVE-2022-17945.5 MEDIUMPlaintext Storage of a password in CODESYS V3 OPC DA Server

IV. Related Vulnerabilities

Same product: CODESYS Control RTE (SL)
Same vendor: CODESYS
Same weakness: CWE-400

V. Comments for CVE-2022-30791

No comments yet

Leave a comment