CVE-2022-47112 — Vulnetix

CVE-2022-47112 PUBLISHED CVSS 3.299999952316284 LOW

7-Zip does not report an error for certain invalid xz files, involving stream flags and reserved bits.

EPSS 0.12% · 30.9th percentile

Risk Scores

CVSS 3.1

3.299999952316284

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N/E:F/RL:O/RC:C

EPSS Score

0.12%

30.9th percentile

Affected Products

Vendor	Product	Versions
ABB	ABB 800xA History <=7.0
ABB	ABB Production Response Batch History <=6.2
ABB	ABB 800xA for AC 870P Melody <=6.2
ABB	ABB Batch Management <=6.2
ABB	ABB 800xA for Symphony Plus Harmony <=6.2
ABB	ABB Application Change Management <=6.2

Exploit Intelligence

https://github.com/boofish/semantic-bugs/ (nist-nvd)

Timeline

Apr 19, 2025 CVE Published
Apr 20, 2025 EPSS Score
Apr 21, 2025 CVE Updated
May 2, 2025 EPSS Score
May 15, 2025 EPSS Score
May 27, 2025 EPSS Score
Jun 8, 2025 EPSS Score
Jun 20, 2025 EPSS Score
Jul 3, 2025 EPSS Score
Jul 15, 2025 EPSS Score
Jul 27, 2025 EPSS Score
Aug 8, 2025 EPSS Score

References

https://library.abb.com/d/3BSE034463D7000 advisory
https://library.abb.com/d/3BSE037410D7000 advisory
https://library.abb.com/d/3BSE080520D7000 advisory
https://psirt.abb.com/csaf/2026/7paa023732.json advisory
https://search.abb.com/library/Download.aspx?DocumentID=7PAA023732&LanguageCode=en&DocumentPartId=&Action=Launch advisory
https://library.abb.com/d/3BDS011222D7000 advisory
https://nvd.nist.gov/vuln/detail/CVE-2022-47112 advisory

Open in Interactive Console →

$ Console Community · 100/wk Open console ›