Vulnerability Description
Fuji Electric D300win prior to version 3.7.1.17 is vulnerable to a write-what-where condition, which could allow an attacker to overwrite program memory to manipulate the flow of information.
CVSS Score
6.1
MEDIUM
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:N/I:H/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Fujielectric | D300Win | < 3.7.1.17 |
Related Weaknesses (CWE)
References
- https://www.cisa.gov/uscert/ics/advisories/icsa-22-242-05Third Party AdvisoryUS Government Resource
- https://www.cisa.gov/uscert/ics/advisories/icsa-22-242-05Third Party AdvisoryUS Government Resource
FAQ
What is CVE-2022-1523?
CVE-2022-1523 is a vulnerability with a CVSS score of 6.1 (MEDIUM). Fuji Electric D300win prior to version 3.7.1.17 is vulnerable to a write-what-where condition, which could allow an attacker to overwrite program memory to manipulate the flow of information.
How severe is CVE-2022-1523?
CVE-2022-1523 has been rated MEDIUM with a CVSS base score of 6.1/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2022-1523?
Check the references section above for vendor advisories and patch information. Affected products include: Fujielectric D300Win.