CVE-2022-3192

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2022-3192
Improper Input Validation vulnerability in ABB AC500 V2 PM5xx allows Client-Server Protocol Manipulation.This issue affects AC500 V2: from 2.0.0 before 2.8.6.

5.3 /10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 3.9 / Impact : 1.4

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact LOW

Scope UNCHANGED

References
Link Resource
https://search.abb.com/library/Download.aspx?DocumentID=3ADR011162&LanguageCode=en&DocumentPartId=&Action=Launch Vendor Advisory
https://search.abb.com/library/Download.aspx?DocumentID=3ADR011162&LanguageCode=en&DocumentPartId=&Action=Launch Vendor Advisory
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:abb:ac500_cpu_firmware:*:*:*:*:*:*:*:*
OR cpe:2.3:h:abb:pm5630-2eth:2.0:*:*:*:*:*:*:*
cpe:2.3:h:abb:pm5650-2eth:2.0:*:*:*:*:*:*:*
cpe:2.3:h:abb:pm5670-2eth:2.0:*:*:*:*:*:*:*
cpe:2.3:h:abb:pm5675-2eth:2.0:*:*:*:*:*:*:*
cpe:2.3:h:abb:pm571-eth-v14x:2.0:*:*:*:*:*:*:*
cpe:2.3:h:abb:pm571-v14x:2.0:*:*:*:*:*:*:*
cpe:2.3:h:abb:pm572:2.0:*:*:*:*:*:*:*
cpe:2.3:h:abb:pm573-eth:2.0:*:*:*:*:*:*:*
cpe:2.3:h:abb:pm581-eth-v14x:2.0:*:*:*:*:*:*:*
cpe:2.3:h:abb:pm581-v14x:2.0:*:*:*:*:*:*:*
cpe:2.3:h:abb:pm582:2.0:*:*:*:*:*:*:*
cpe:2.3:h:abb:pm582-arcnet:2.0:*:*:*:*:*:*:*
cpe:2.3:h:abb:pm582-eth:2.0:*:*:*:*:*:*:*
cpe:2.3:h:abb:pm582-v14x:2.0:*:*:*:*:*:*:*
cpe:2.3:h:abb:pm583-eth:2.0:*:*:*:*:*:*:*
cpe:2.3:h:abb:pm585-eth:2.0:*:*:*:*:*:*:*
cpe:2.3:h:abb:pm585-mc-kit:2.0:*:*:*:*:*:*:*
cpe:2.3:h:abb:pm590-arcnet-v14x:2.0:*:*:*:*:*:*:*
cpe:2.3:h:abb:pm590-eth:2.0:*:*:*:*:*:*:*
cpe:2.3:h:abb:pm590-eth-v14x:2.0:*:*:*:*:*:*:*
cpe:2.3:h:abb:pm590-mc-kit:2.0:*:*:*:*:*:*:*
cpe:2.3:h:abb:pm590-v14x:2.0:*:*:*:*:*:*:*
cpe:2.3:h:abb:pm591-2eth:2.0:*:*:*:*:*:*:*
cpe:2.3:h:abb:pm591-arcnet-v14x:2.0:*:*:*:*:*:*:*
cpe:2.3:h:abb:pm591-eth:2.0:*:*:*:*:*:*:*
cpe:2.3:h:abb:pm591-eth-v14x:2.0:*:*:*:*:*:*:*
cpe:2.3:h:abb:pm591-v14x:2.0:*:*:*:*:*:*:*
cpe:2.3:h:abb:pm592-eth:2.0:*:*:*:*:*:*:*
cpe:2.3:h:abb:pm595-4eth-f:2.0:*:*:*:*:*:*:*
History

21 Nov 2024, 07:19

Type Values Removed Values Added
References () https://search.abb.com/library/Download.aspx?DocumentID=3ADR011162&LanguageCode=en&DocumentPartId=&Action=Launch - Vendor Advisory () https://search.abb.com/library/Download.aspx?DocumentID=3ADR011162&LanguageCode=en&DocumentPartId=&Action=Launch - Vendor Advisory

13 Sep 2023, 04:15

Type Values Removed Values Added
Summary Improper Input Validation vulnerability in ABB AC500 V2 PM5xx allows Client-Server Protocol Manipulation.This issue affects AC500 V2: from 2.0.0 before 2.8.6. Improper Input Validation vulnerability in ABB AC500 V2 PM5xx allows Client-Server Protocol Manipulation.This issue affects AC500 V2: from 2.0.0 before 2.8.6.

10 Apr 2023, 16:26

Type Values Removed Values Added
First Time Abb pm591-eth-v14x
Abb pm571-v14x
Abb pm5670-2eth
Abb pm591-eth
Abb pm590-v14x
Abb pm582
Abb pm5630-2eth
Abb pm592-eth
Abb pm573-eth
Abb pm585-mc-kit
Abb pm572
Abb pm590-mc-kit
Abb pm571-eth-v14x
Abb
Abb pm582-v14x
Abb pm583-eth
Abb pm5675-2eth
Abb pm582-eth
Abb pm581-eth-v14x
Abb pm591-arcnet-v14x
Abb pm595-4eth-f
Abb pm591-v14x
Abb pm591-2eth
Abb pm5650-2eth
Abb pm590-arcnet-v14x
Abb pm585-eth
Abb ac500 Cpu Firmware
Abb pm590-eth-v14x
Abb pm590-eth
Abb pm581-v14x
Abb pm582-arcnet
CPE cpe:2.3:h:abb:pm590-eth-v14x:2.0:*:*:*:*:*:*:*
cpe:2.3:h:abb:pm582-arcnet:2.0:*:*:*:*:*:*:*
cpe:2.3:o:abb:ac500_cpu_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:abb:pm572:2.0:*:*:*:*:*:*:*
cpe:2.3:h:abb:pm590-arcnet-v14x:2.0:*:*:*:*:*:*:*
cpe:2.3:h:abb:pm582-v14x:2.0:*:*:*:*:*:*:*
cpe:2.3:h:abb:pm590-mc-kit:2.0:*:*:*:*:*:*:*
cpe:2.3:h:abb:pm571-v14x:2.0:*:*:*:*:*:*:*
cpe:2.3:h:abb:pm5630-2eth:2.0:*:*:*:*:*:*:*
cpe:2.3:h:abb:pm5675-2eth:2.0:*:*:*:*:*:*:*
cpe:2.3:h:abb:pm585-eth:2.0:*:*:*:*:*:*:*
cpe:2.3:h:abb:pm5650-2eth:2.0:*:*:*:*:*:*:*
cpe:2.3:h:abb:pm591-2eth:2.0:*:*:*:*:*:*:*
cpe:2.3:h:abb:pm581-eth-v14x:2.0:*:*:*:*:*:*:*
cpe:2.3:h:abb:pm573-eth:2.0:*:*:*:*:*:*:*
cpe:2.3:h:abb:pm591-eth-v14x:2.0:*:*:*:*:*:*:*
cpe:2.3:h:abb:pm582-eth:2.0:*:*:*:*:*:*:*
cpe:2.3:h:abb:pm582:2.0:*:*:*:*:*:*:*
cpe:2.3:h:abb:pm592-eth:2.0:*:*:*:*:*:*:*
cpe:2.3:h:abb:pm5670-2eth:2.0:*:*:*:*:*:*:*
cpe:2.3:h:abb:pm591-eth:2.0:*:*:*:*:*:*:*
cpe:2.3:h:abb:pm590-v14x:2.0:*:*:*:*:*:*:*
cpe:2.3:h:abb:pm595-4eth-f:2.0:*:*:*:*:*:*:*
cpe:2.3:h:abb:pm581-v14x:2.0:*:*:*:*:*:*:*
cpe:2.3:h:abb:pm571-eth-v14x:2.0:*:*:*:*:*:*:*
cpe:2.3:h:abb:pm590-eth:2.0:*:*:*:*:*:*:*
cpe:2.3:h:abb:pm583-eth:2.0:*:*:*:*:*:*:*
cpe:2.3:h:abb:pm591-v14x:2.0:*:*:*:*:*:*:*
cpe:2.3:h:abb:pm591-arcnet-v14x:2.0:*:*:*:*:*:*:*
cpe:2.3:h:abb:pm585-mc-kit:2.0:*:*:*:*:*:*:*
References (MISC) https://search.abb.com/library/Download.aspx?DocumentID=3ADR011162&LanguageCode=en&DocumentPartId=&Action=Launch - (MISC) https://search.abb.com/library/Download.aspx?DocumentID=3ADR011162&LanguageCode=en&DocumentPartId=&Action=Launch - Vendor Advisory
CVSS v2 : unknown
v3 : unknown 		v2 : unknown
v3 : 5.3
CWE CWE-754

31 Mar 2023, 17:15

Type Values Removed Values Added
New CVE
Information

Published : 2023-03-31 17:15

Updated : 2024-11-21 07:19

NVD link : CVE-2022-3192

Mitre link : CVE-2022-3192

CVE.ORG link : CVE-2022-3192

JSON object : View

Products Affected

abb

  • pm592-eth
  • pm581-eth-v14x
  • pm591-v14x
  • pm572
  • pm585-eth
  • pm590-mc-kit
  • pm595-4eth-f
  • pm590-eth
  • pm591-eth-v14x
  • pm591-arcnet-v14x
  • pm591-2eth
  • pm590-v14x
  • pm571-eth-v14x
  • pm582-arcnet
  • pm590-arcnet-v14x
  • pm573-eth
  • pm571-v14x
  • pm583-eth
  • pm582-eth
  • pm582-v14x
  • pm590-eth-v14x
  • pm5630-2eth
  • pm581-v14x
  • pm5670-2eth
  • pm591-eth
  • pm5675-2eth
  • ac500_cpu_firmware
  • pm5650-2eth
  • pm582
  • pm585-mc-kit
CWE
CWE-754

Improper Check for Unusual or Exceptional Conditions