Unrated severityNVD Advisory· Published Jul 13, 2022· Updated Sep 16, 2024
CVE-2022-34765
CVE-2022-34765
Description
A CWE-73: External Control of File Name or Path vulnerability exists that could cause loading of unauthorized firmware images when user-controlled data is written to the file path. Affected Products: X80 advanced RTU Communication Module (BMENOR2200H) (V2.01 and later), OPC UA Modicon Communication Module (BMENUA0100) (V1.10 and prior)
Affected products
4>=V2.01+ 1 more
- (no CPE)range: >=V2.01
- (no CPE)range: V2.01
<=V1.10+ 1 more
- (no CPE)range: <=V1.10
- (no CPE)range: BMENUA0100
Patches
Vulnerability mechanics
References
1- download.schneider-electric.com/filesmitrex_refsource_MISC
News mentions
0No linked articles in our index yet.