Unrated severityNVD Advisory· Published Oct 17, 2022· Updated May 14, 2025

CVE-2022-3158

Description

Rockwell Automation FactoryTalk VantagePoint versions 8.0, 8.10, 8.20, 8.30, 8.31 are vulnerable to an input validation vulnerability. The FactoryTalk VantagePoint SQL Server lacks input validation when users enter SQL statements to retrieve information from the back-end database. If successfully exploited, this could allow a user with basic user privileges to perform remote code execution on the server.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

Rockwellautomation/FactoryTalk® ViewPointcpe-rescue
Rockwellautomation/FactoryTalk VantagePointllm-create
Range: 8.0, 8.10, 8.20, 8.30, 8.31

Patches

Vulnerability mechanics

References

rockwellautomation.custhelp.com/app/answers/answer_view/a_id/1137043mitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.003
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000