CVE-2022-22518

A bug in CmpUserMgr component can lead to only partially applied security policies. This can result in enabled, anonymous access to components part of the applied security policy.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:codesys:control_for_beaglebone_sl:*:*:*:*:*:*:*:*
cpe:2.3:a:codesys:control_for_beckhoff_cx9020:*:*:*:*:*:*:*:*
cpe:2.3:a:codesys:control_for_empc-a\/imx6_sl:*:*:*:*:*:*:*:*
cpe:2.3:a:codesys:control_for_iot2000_sl:*:*:*:*:*:*:*:*
cpe:2.3:a:codesys:control_for_linux_sl:*:*:*:*:*:*:*:*
cpe:2.3:a:codesys:control_for_pfc100_sl:*:*:*:*:*:*:*:*
cpe:2.3:a:codesys:control_for_pfc200_sl:*:*:*:*:*:*:*:*
cpe:2.3:a:codesys:control_for_raspberry_pi_sl:*:*:*:*:*:*:*:*
cpe:2.3:a:codesys:control_for_wago_touch_panels_600_sl:*:*:*:*:*:*:*:*
cpe:2.3:a:codesys:control_runtime_system_toolkit:*:*:*:*:*:*:*:*

History

No history.

Information

Published : 2022-04-07 19:15

Updated : 2024-02-28 19:09


NVD link : CVE-2022-22518

Mitre link : CVE-2022-22518

CVE.ORG link : CVE-2022-22518


JSON object : View

Products Affected

codesys

  • control_for_beaglebone_sl
  • control_for_pfc200_sl
  • control_runtime_system_toolkit
  • control_for_wago_touch_panels_600_sl
  • control_for_iot2000_sl
  • control_for_pfc100_sl
  • control_for_raspberry_pi_sl
  • control_for_linux_sl
  • control_for_beckhoff_cx9020
  • control_for_empc-a\/imx6_sl
CWE
CWE-276

Incorrect Default Permissions