Unrated severityNVD Advisory· Published Jul 13, 2022· Updated Sep 16, 2024
CVE-2022-34762
CVE-2022-34762
Description
A CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability exists that could cause unauthorized firmware image loading when unsigned images are added to the firmware image path. Affected Products: X80 advanced RTU Communication Module (BMENOR2200H) (V2.01 and later), OPC UA Modicon Communication Module (BMENUA0100) (V1.10 and prior)
Affected products
4>= V2.01+ 1 more
- (no CPE)range: >= V2.01
- (no CPE)range: V2.01
<= V1.10+ 1 more
- (no CPE)range: <= V1.10
- (no CPE)range: BMENUA0100
Patches
Vulnerability mechanics
References
1- download.schneider-electric.com/filesmitrex_refsource_MISC
News mentions
0No linked articles in our index yet.