VDB
CVE-2022-23521
CVE-2022-23521
PUBLISHED
CVSS 8.800000190734863 HIGH
Vulnerability in Git that arises from an issue with git attributes parsing. This flaw can lead to an integer overflow, which might be exploited by authenticated attackers to execute arbitrary code or cause a denial of service.
EPSS 9.44% · 93.0th percentile
Risk Scores
CVSS 3.1
8.800000190734863
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:W/RC:C
EPSS Score
9.44%
93.0th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| ABB | ABB M2M Gateway SW, software versions >=5.0.1|<=5.0.3 | |
| ABB | ABB M2M Gateway ARM600, firmware versions >=4.1.2|<=5.0.3 |
Timeline
- Jan 17, 2023 CVE Published
- Jan 18, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Sep 7, 2024 EPSS Score
- Feb 13, 2025 CVE Updated
- Mar 22, 2025 EPSS Score
- Mar 25, 2025 EPSS Score
- Mar 28, 2025 EPSS Score
- Mar 30, 2025 EPSS Score
- Apr 4, 2025 EPSS Score
- Apr 7, 2025 EPSS Score
- Apr 17, 2025 EPSS Score
References
- https://psirt.abb.com/csaf/2025/2nga002579.json advisory
- https://library.e.abb.com/public/ffab1a14a42646c6adee38fc3de61dad/Arctic_csdepl_758860_ENf.pdf advisory
- https://library.e.abb.com/public/0498e4c0babd46aa9243aedd6f99c375/ARM600_user_758861_ENk.pdf advisory
- https://new.abb.com/service/electrification/life-cycle-management?pe_data=D42415F457244415145784545584371%7C29609824 advisory
- https://search.abb.com/library/Download.aspx?DocumentID=2NGA002579&LanguageCode=en&DocumentPartId=pdf&Action=Launch advisory
- https://search.abb.com/library/Download.aspx?DocumentID=1MRS758860&LanguageCode=en&DocumentPartId=&Action=Launch advisory
- https://nvd.nist.gov/vuln/detail/CVE-2022-23521 advisory