Cyber Resilience

CVE-2022-34820

High

Published: 12 July 2022

Published
12 July 2022
Modified
21 November 2024
KEV Added
Patch
CVSS Score v3.1 8.4 CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
EPSS Score 0.0058 69.4th percentile
Risk Priority 17 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2022-34820 is a high-severity Command Injection (CWE-77) vulnerability in Siemens Simatic Cp 1242-7 V2 Firmware. Its CVSS base score is 8.4 (High).

Operationally, ranked in the top 30.6% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog.

EU & UK References

Vulnerability details

A vulnerability has been identified in SIMATIC CP 1242-7 V2 (All versions < V3.3.46), SIMATIC CP 1243-1 (All versions < V3.3.46), SIMATIC CP 1243-7 LTE EU (All versions < V3.3.46), SIMATIC CP 1243-7 LTE US (All versions < V3.3.46), SIMATIC…

more

CP 1243-8 IRC (All versions < V3.3.46), SIMATIC CP 1542SP-1 IRC (All versions >= V2.0 < V2.2.28), SIMATIC CP 1543-1 (All versions < V3.0.22), SIMATIC CP 1543SP-1 (All versions >= V2.0 < V2.2.28), SIPLUS ET 200SP CP 1542SP-1 IRC TX RAIL (All versions >= V2.0 < V2.2.28), SIPLUS ET 200SP CP 1543SP-1 ISEC (All versions >= V2.0 < V2.2.28), SIPLUS ET 200SP CP 1543SP-1 ISEC TX RAIL (All versions >= V2.0 < V2.2.28), SIPLUS NET CP 1242-7 V2 (All versions < V3.3.46), SIPLUS NET CP 1543-1 (All versions < V3.0.22), SIPLUS S7-1200 CP 1243-1 (All versions < V3.3.46), SIPLUS S7-1200 CP 1243-1 RAIL (All versions < V3.3.46). The application does not correctly escape some user provided fields during the authentication process. This could allow an attacker to inject custom commands and execute arbitrary code with elevated privileges.

CWE(s)

Related Threats

No named actor attribution yet. ATT&CK technique mapping in progress for this CVE.

Affected Assets

siemens
simatic cp 1242-7 v2 firmware
≤ 3.3.46
siemens
simatic cp 1243-1 firmware
≤ 3.3.46
siemens
simatic cp 1243-7 lte eu firmware
≤ 3.3.46
siemens
simatic cp 1243-7 lte us firmware
≤ 3.3.46
siemens
simatic cp 1243-8 irc firmware
≤ 3.3.46
siemens
simatic cp 1542sp-1 irc firmware
2.0 — 2.2.28
siemens
simatic cp 1543-1 firmware
≤ 3.0.22
siemens
simatic cp 1543sp-1 firmware
2.0 — 2.2.28
siemens
siplus et 200sp cp 1542sp-1 irc tx rail firmware
2.0 — 2.2.28
siemens
siplus et 200sp cp 1543sp-1 isec firmware
2.0 — 2.2.28
+5 more product configuration(s) — see NVD for full list

Mitigating Controls

Likely Mitigating Controls AI

Per-CVE control mapping for this CVE has not run yet; the list below is derived from the weakness types (CWEs) cited in the NVD entry.

addresses: CWE-116

Validating that output matches expected content directly mitigates failures to properly encode or escape data for its destination context.

References