CVE-2022-22517

High

An unauthenticated, remote attacker can disrupt existing communication channels between CODESYS products by guessing a valid channel ID and…

CERTVDE·CWE-334·Published 2022-04-07

CVSS

7.5

EPSS

0.01

KEV

Exploits

cve.orgen

214 chars

An unauthenticated, remote attacker can disrupt existing communication channels between CODESYS products by guessing a valid channel ID and injecting packets. This results in the communication channel to be closed.

NVDen

214 chars

NVDes

225 chars

Un atacante remoto no autenticado puede interrumpir los canales de comunicación presentes entre los productos CODESYS al adivinar un ID de canal válido e inyectando paquetes. Esto hace que el canal de comunicación sea cerrado

CVSS metrics across sources

Version	Type	Source	Base	Exp	Impact	Vector
2.0	Primary	NVD	5.0	10.0	2.9	AV:N/AC:L/Au:N/C:N/I:N/A:P
3.1	Primary	cve.org	7.5	—	—	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H