CVE-2022-1467 — HIGH (7.4) — White Hats Nepal

Vulnerability Description

Windows OS can be configured to overlay a “language bar” on top of any application. When this OS functionality is enabled, the OS language bar UI will be viewable in the browser alongside the AVEVA InTouch Access Anywhere and Plant SCADA Access Anywhere applications. It is possible to manipulate the Windows OS language bar to launch an OS command prompt, resulting in a context-escape from application into OS.

CVSS Score

7.4

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:L

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality

LOW

Integrity

LOW

Availability

LOW

Affected Products

Vendor	Product	Versions
Aveva	Intouch Access Anywhere	All versions
Aveva	Plant Scada Access Anywhere	All versions

Related Weaknesses (CWE)

CWE-668

References

https://www.aveva.com/en/support-and-success/cyber-security-updates/Vendor Advisory
https://www.cisa.gov/uscert/ics/advisories/icsa-22-130-05Third Party AdvisoryUS Government Resource
https://www.aveva.com/en/support-and-success/cyber-security-updates/Vendor Advisory
https://www.cisa.gov/uscert/ics/advisories/icsa-22-130-05Third Party AdvisoryUS Government Resource

FAQ

What is CVE-2022-1467?

CVE-2022-1467 is a vulnerability with a CVSS score of 7.4 (HIGH). Windows OS can be configured to overlay a “language bar” on top of any application. When this OS functionality is enabled, the OS language bar UI will be viewable in the browser alongside the AVEVA In...

How severe is CVE-2022-1467?

CVE-2022-1467 has been rated HIGH with a CVSS base score of 7.4/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2022-1467?

Check the references section above for vendor advisories and patch information. Affected products include: Aveva Intouch Access Anywhere, Aveva Plant Scada Access Anywhere.