Vulnerability Description
Improper Input Validation vulnerability in ABB AC500 V2 PM5xx allows Client-Server Protocol Manipulation.This issue affects AC500 V2: from 2.0.0 before 2.8.6.
CVSS Score
5.3
MEDIUM
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Abb | Ac500 Cpu Firmware | >= 2.0.0, < 2.8.6 |
| Abb | Pm5630-2Eth | 2.0 |
| Abb | Pm5650-2Eth | 2.0 |
| Abb | Pm5670-2Eth | 2.0 |
| Abb | Pm5675-2Eth | 2.0 |
| Abb | Pm571-Eth-V14X | 2.0 |
| Abb | Pm571-V14X | 2.0 |
| Abb | Pm572 | 2.0 |
| Abb | Pm573-Eth | 2.0 |
| Abb | Pm581-Eth-V14X | 2.0 |
| Abb | Pm581-V14X | 2.0 |
| Abb | Pm582 | 2.0 |
| Abb | Pm582-Arcnet | 2.0 |
| Abb | Pm582-Eth | 2.0 |
| Abb | Pm582-V14X | 2.0 |
| Abb | Pm583-Eth | 2.0 |
| Abb | Pm585-Eth | 2.0 |
| Abb | Pm585-Mc-Kit | 2.0 |
| Abb | Pm590-Arcnet-V14X | 2.0 |
| Abb | Pm590-Eth | 2.0 |
Related Weaknesses (CWE)
References
- https://search.abb.com/library/Download.aspx?DocumentID=3ADR011162&LanguageCode=Vendor Advisory
- https://search.abb.com/library/Download.aspx?DocumentID=3ADR011162&LanguageCode=Vendor Advisory
FAQ
What is CVE-2022-3192?
CVE-2022-3192 is a vulnerability with a CVSS score of 5.3 (MEDIUM). Improper Input Validation vulnerability in ABB AC500 V2 PM5xx allows Client-Server Protocol Manipulation.This issue affects AC500 V2: from 2.0.0 before 2.8.6.
How severe is CVE-2022-3192?
CVE-2022-3192 has been rated MEDIUM with a CVSS base score of 5.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2022-3192?
Check the references section above for vendor advisories and patch information. Affected products include: Abb Ac500 Cpu Firmware, Abb Pm5630-2Eth, Abb Pm5650-2Eth, Abb Pm5670-2Eth, Abb Pm5675-2Eth.