Unrated severityNVD Advisory· Published Dec 13, 2022· Updated Apr 21, 2025

CVE-2022-45937

Description

A vulnerability has been identified in APOGEE PXC Compact (BACnet) (All versions < V3.5.5), APOGEE PXC Compact (P2 Ethernet) (All versions < V2.8.20), APOGEE PXC Modular (BACnet) (All versions < V3.5.5), APOGEE PXC Modular (P2 Ethernet) (All versions < V2.8.20), TALON TC Compact (BACnet) (All versions < V3.5.5), TALON TC Modular (BACnet) (All versions < V3.5.5). A low privilege authenticated attacker with network access to the integrated web server could download sensitive information from the device containing user account credentials.

Affected products

Siemens Foundation/APOGEE PXC Modular (BACnet)llm-create2 versions
< V3.5.5+ 1 more
- (no CPE)range: < V3.5.5
- (no CPE)range: All versions < V3.5.5
Siemens Foundation/APOGEE PXC Modular (P2 Ethernet)llm-create2 versions
< V2.8.20+ 1 more
- (no CPE)range: < V2.8.20
- (no CPE)range: All versions < V2.8.20
Siemens Foundation/TALON TC Modular (BACnet)llm-create2 versions
< V3.5.5+ 1 more
- (no CPE)range: < V3.5.5
- (no CPE)range: All versions < V3.5.5
Siemens Foundation/APOGEE PXC Compact (BACnet)llm-fuzzy2 versions
< V3.5.5+ 1 more
- (no CPE)range: < V3.5.5
- (no CPE)range: All versions < V3.5.5
Siemens Foundation/TALON TC Compact (BACnet)llm-fuzzy2 versions
< V3.5.5+ 1 more
- (no CPE)range: < V3.5.5
- (no CPE)range: All versions < V3.5.5
Siemens Foundation/APOGEE PXC Compact (P2 Ethernet)llm-fuzzy2 versions
< V2.8.20+ 1 more
- (no CPE)range: < V2.8.20
- (no CPE)range: All versions < V2.8.20

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

cert-portal.siemens.com/productcert/pdf/ssa-180579.pdfmitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000