Rewterz Threat Advisory – Multiple Microsoft Office Graphics Vulnerabilities
December 22, 2022Rewterz Threat Alert – Heodo Malware – Active IOCs
December 22, 2022Rewterz Threat Advisory – Multiple Microsoft Office Graphics Vulnerabilities
December 22, 2022Rewterz Threat Alert – Heodo Malware – Active IOCs
December 22, 2022Severity
High
Analysis Summary
CVE-2022-3157
Rockwell Automation controllers are vulnerable to a denial of service, caused by improper input validation. By sending a specially-crafted CIP request, a remote attacker could exploit this vulnerability to cause a denial of service.
Impact
- Denial of Service
Indicators Of Compromise
CVE
- CVE-2022-3157
Affected Vendors
Rockwell Automation
Affected Products
- Rockwell Automation ControlLogix 5570 controllers
- Rockwell Automation GuardLogix 5570
- Rockwell Automation Compact GuardLogix 5370 controllers
- Rockwell Automation Compact GuardLogix 5380 controllers
Remediation
Refer to CISA-CERT Advisory for the patch, upgrade, or suggested workaround information.