CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2022-1525

The Cognex 3D-A1000 Dimensioning System in firmware version 1.0.3 (3354) and prior is vulnerable to CWE-602: Client-Side Enforcement of Server-Side Security, which could allow attackers to bypass web access controls by inspecting and modifying the source code of password protected web elements.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 7.0%

CVSS Severity

CVSS v3 Score 9.1

References

https://www.cisa.gov/uscert/ics/advisories/icsa-22-249-03
https://www.cisa.gov/uscert/ics/advisories/icsa-22-249-03

Products affected by CVE-2022-1525

Cognex » 3d-A1000 Dimensioning System » Version: N/A

cpe:2.3:h:cognex:3d-a1000_dimensioning_system:-
Cognex » 3d-A1000 Dimensioning System Firmware » Version: N/A

cpe:2.3:o:cognex:3d-a1000_dimensioning_system_firmware:-
Cognex » 3d-A1000 Dimensioning System Firmware » Version: 1.0.3(3354)

cpe:2.3:o:cognex:3d-a1000_dimensioning_system_firmware:1.0.3(3354)

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-1525

Products

Pricing

Contact Us