VDB
ICSA-22-249-01
ICSA-22-249-01
PUBLISHED
CVSS 7.5 HIGH
Successful exploitation of this vulnerability could lead to a denial-of-service condition to any server or client using the affected libraries
Risk Scores
CVSS v3.1
7.5
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| TMW Library IEC 61850 - Any client or server using the C language library with a: version number of 11.2.0 or earlier | ||
| TMW Library IEC 61850 - Any client or server using the C++ C# or Java language library with a: version number of 5.0.1 or earlier | ||
| TMW Library IEC 60870 - 6 (ICCP/Tase.2) -Any client or server using a C++ language library with a: version number of 4.4.3 or earlier |
Timeline
- Sep 6, 2022 CVE Published
References
- https://raw.githubusercontent.com/cisagov/CSAF/develop/csaf_files/OT/white/2022/icsa-22-249-01.json advisory
- https://www.cisa.gov/news-events/ics-advisories/icsa-22-249-01 advisory
- https://www.cisa.gov/uscert/ics/alerts/ICS-ALERT-10-301-01 url
- https://us-cert.cisa.gov/sites/default/files/recommended_practices/NCCIC_ICS-CERT_Defense_in_Depth_2016_S508C.pdf url
- mailto:support@trianglemicroworks.com fix