Vulnerability Description
In multiple CODESYS products, file download and upload function allows access to internal files in the working directory e.g. firmware files of the PLC. All requests are processed on the controller only if no level 1 password is configured on the controller or if remote attacker has previously successfully authenticated himself to the controller. A successful Attack may lead to a denial of service, change of local files, or drain of confidential Information. User interaction is not required
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Codesys | Plcwinnt | >= 2.0, < 2.4.7.57 |
| Codesys | Runtime Toolkit | >= 2.0, < 2.4.7.57 |
Related Weaknesses (CWE)
References
- https://customers.codesys.com/index.php?eID=dumpFile&t=f&f=17139&token=ec67d15a4MitigationVendor Advisory
- https://customers.codesys.com/index.php?eID=dumpFile&t=f&f=17139&token=ec67d15a4MitigationVendor Advisory
FAQ
What is CVE-2022-32143?
CVE-2022-32143 is a vulnerability with a CVSS score of 8.8 (HIGH). In multiple CODESYS products, file download and upload function allows access to internal files in the working directory e.g. firmware files of the PLC. All requests are processed on the controller on...
How severe is CVE-2022-32143?
CVE-2022-32143 has been rated HIGH with a CVSS base score of 8.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2022-32143?
Check the references section above for vendor advisories and patch information. Affected products include: Codesys Plcwinnt, Codesys Runtime Toolkit.