CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2022-2463

Rockwell Automation ISaGRAF Workbench software versions 6.0 through 6.6.9 are affected by a Path Traversal vulnerability. A crafted malicious .7z exchange file may allow an attacker to gain the privileges of the ISaGRAF Workbench software when opened. If the software is running at the SYSTEM level, then the attacker will gain admin level privileges. User interaction is required for this exploit to be successful.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.005

EPSS Ranking 66.0%

CVSS Severity

CVSS v3 Score 6.1

References

https://www.cisa.gov/uscert/ics/advisories/icsa-22-202-03
https://www.cisa.gov/uscert/ics/advisories/icsa-22-202-03

Products affected by CVE-2022-2463

Rockwellautomation » Isagraf Workbench » Version: 6.0

cpe:2.3:a:rockwellautomation:isagraf_workbench:6.0
Rockwellautomation » Isagraf Workbench » Version: 6.6.9

cpe:2.3:a:rockwellautomation:isagraf_workbench:6.6.9

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-2463

Products

Pricing

Contact Us