CVE-2022-1748 - OpenCVE

Softing OPC UA C++ Server SDK, Secure Integration Server, edgeConnector, edgeAggregator, OPC Suite, and uaGate are affected by a NULL pointer dereference vulnerability.

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

Vendors & Products
CPE Configurations

Vendors	Products
Softing	Uagates Edgeaggregator Edgeconnector Secure Integration Server Opc Opc Ua C\+\+ Software Development Kit

Configuration 1 [-]

OR	cpe:2.3:a:softing:edgeaggregator:3.1:::::::*
	cpe:2.3:a:softing:edgeconnector:3.1:::::::*
	cpe:2.3:a:softing:opc:5.2:::::::*
	cpe:2.3:a:softing:opc_ua_c\+\+_software_development_kit:6:::::::*
	cpe:2.3:a:softing:secure_integration_server:1.22:::::::*
	cpe:2.3:a:softing:uagates:1.74:::::::*

References

Link	Resource
https://industrial.softing.com/fileadmin/psirt/downloads/syt-2022-7.html	Mitigation Vendor Advisory
https://www.cisa.gov/uscert/ics/advisories/icsa-22-228-04	Mitigation Third Party Advisory US Government Resource

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: icscert

Published: 2022-08-17T20:08:38

Updated: 2022-08-17T20:08:38

Reserved: 2022-05-16T00:00:00

Link: CVE-2022-1748

JSON object: View

NVD Information

Status : Analyzed

Published: 2022-08-17T21:15:08.717

Modified: 2022-08-19T12:37:30.193

Link: CVE-2022-1748

JSON object: View

Redhat Information

No data.

CWE

CWE-476

{"containers": {"cna": {"affected": [{"product": "Secure Integration Server", "vendor": "Softing", "versions": [{"status": "affected", "version": "V1.22"}]}, {"product": "OPC UA C++ SDK", "vendor": "Softing", "versions": [{"status": "affected", "version": "V6.00"}]}, {"product": "edgeConnector Siemens", "vendor": "Softing", "versions": [{"status": "affected", "version": "V3.10"}]}, {"product": "edgeConnector 840D", "vendor": "Softing", "versions": [{"status": "affected", "version": "V3.10"}]}, {"product": "edgeConnector Modbus", "vendor": "Softing", "versions": [{"status": "affected", "version": "V3.10"}]}, {"product": "edgeAggregator", "vendor": "Softing", "versions": [{"status": "affected", "version": "V3.10"}]}], "credits": [{"lang": "en", "value": "Pedro Ribeiro and Radek Domanski, working with Trend Micro Zero Day Initiative, reported these vulnerabilities to Softing and CISA."}], "descriptions": [{"lang": "en", "value": "Softing OPC UA C++ Server SDK, Secure Integration Server, edgeConnector, edgeAggregator, OPC Suite, and uaGate are affected by a NULL pointer dereference vulnerability."}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.1"}}], "problemTypes": [{"descriptions": [{"cweId": "CWE-476", "description": "CWE-476: NULL Pointer Dereference", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"dateUpdated": "2022-08-17T20:08:38", "orgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6", "shortName": "icscert"}, "references": [{"tags": ["x_refsource_CONFIRM"], "url": "https://www.cisa.gov/uscert/ics/advisories/icsa-22-228-04"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://industrial.softing.com/fileadmin/psirt/downloads/syt-2022-7.html"}], "solutions": [{"lang": "en", "value": "Softing released new versions to address these vulnerabilities and notified known users of the releases. Users are advised to update to the new versions:\nSofting Secure Integration Server V1.30 \n\nThe latest software packages can be downloaded from the Softing website. \n\nSofting recommends the following mitigations and workarounds: \nChange the admin password or create a new user with administrative rights and delete the default admin user. \nConfigure the Windows firewall to block network requests to IP port 9000. \nDisable the HTTP Server in NGINX configuration of the Softing Secure Integration Server, only using the HTTPS server. \nFor more details on these vulnerabilities and mitigations, users should see SYT-2022-7 on the Softing security website."}], "source": {"discovery": "EXTERNAL"}, "title": "Softing Secure Integration Server NULL Pointer Dereference", "x_generator": {"engine": "Vulnogram 0.0.9"}, "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "ics-cert@hq.dhs.gov", "ID": "CVE-2022-1748", "STATE": "PUBLIC", "TITLE": "Softing Secure Integration Server NULL Pointer Dereference"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "Secure Integration Server", "version": {"version_data": [{"version_affected": "=", "version_value": "V1.22"}]}}, {"product_name": "OPC UA C++ SDK", "version": {"version_data": [{"version_affected": "=", "version_value": "V6.00"}]}}, {"product_name": "edgeConnector Siemens", "version": {"version_data": [{"version_affected": "=", "version_value": "V3.10"}]}}, {"product_name": "edgeConnector 840D", "version": {"version_data": [{"version_affected": "=", "version_value": "V3.10"}]}}, {"product_name": "edgeConnector Modbus", "version": {"version_data": [{"version_affected": "=", "version_value": "V3.10"}]}}, {"product_name": "edgeAggregator", "version": {"version_data": [{"version_affected": "=", "version_value": "V3.10"}]}}]}, "vendor_name": "Softing"}]}}, "credit": [{"lang": "eng", "value": "Pedro Ribeiro and Radek Domanski, working with Trend Micro Zero Day Initiative, reported these vulnerabilities to Softing and CISA."}], "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Softing OPC UA C++ Server SDK, Secure Integration Server, edgeConnector, edgeAggregator, OPC Suite, and uaGate are affected by a NULL pointer dereference vulnerability."}]}, "generator": {"engine": "Vulnogram 0.0.9"}, "impact": {"cvss": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.1"}}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "CWE-476: NULL Pointer Dereference"}]}]}, "references": {"reference_data": [{"name": "https://www.cisa.gov/uscert/ics/advisories/icsa-22-228-04", "refsource": "CONFIRM", "url": "https://www.cisa.gov/uscert/ics/advisories/icsa-22-228-04"}, {"name": "https://industrial.softing.com/fileadmin/psirt/downloads/syt-2022-7.html", "refsource": "CONFIRM", "url": "https://industrial.softing.com/fileadmin/psirt/downloads/syt-2022-7.html"}]}, "solution": [{"lang": "en", "value": "Softing released new versions to address these vulnerabilities and notified known users of the releases. Users are advised to update to the new versions:\nSofting Secure Integration Server V1.30 \n\nThe latest software packages can be downloaded from the Softing website. \n\nSofting recommends the following mitigations and workarounds: \nChange the admin password or create a new user with administrative rights and delete the default admin user. \nConfigure the Windows firewall to block network requests to IP port 9000. \nDisable the HTTP Server in NGINX configuration of the Softing Secure Integration Server, only using the HTTPS server. \nFor more details on these vulnerabilities and mitigations, users should see SYT-2022-7 on the Softing security website."}], "source": {"discovery": "EXTERNAL"}}}}, "cveMetadata": {"assignerOrgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6", "assignerShortName": "icscert", "cveId": "CVE-2022-1748", "datePublished": "2022-08-17T20:08:38", "dateReserved": "2022-05-16T00:00:00", "dateUpdated": "2022-08-17T20:08:38", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:softing:edgeaggregator:3.1:*:*:*:*:*:*:*", "matchCriteriaId": "C0E07A55-5FA0-402D-BB22-FA8D3D8C484D", "vulnerable": true}, {"criteria": "cpe:2.3:a:softing:edgeconnector:3.1:*:*:*:*:*:*:*", "matchCriteriaId": "62FE322E-A720-4E08-9058-3BAC295E720B", "vulnerable": true}, {"criteria": "cpe:2.3:a:softing:opc:5.2:*:*:*:*:*:*:*", "matchCriteriaId": "A9916828-8213-47D4-B294-8112B241F32C", "vulnerable": true}, {"criteria": "cpe:2.3:a:softing:opc_ua_c\\+\\+_software_development_kit:6:*:*:*:*:*:*:*", "matchCriteriaId": "BA185EBD-8048-4B1C-A476-4AE61831ACF7", "vulnerable": true}, {"criteria": "cpe:2.3:a:softing:secure_integration_server:1.22:*:*:*:*:*:*:*", "matchCriteriaId": "0BF8EC24-9C94-4C55-A496-5DD524B981C4", "vulnerable": true}, {"criteria": "cpe:2.3:a:softing:uagates:1.74:*:*:*:*:*:*:*", "matchCriteriaId": "2DD68DEC-1E1C-456F-8FC2-F3EF9A72B012", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "Softing OPC UA C++ Server SDK, Secure Integration Server, edgeConnector, edgeAggregator, OPC Suite, and uaGate are affected by a NULL pointer dereference vulnerability."}, {"lang": "es", "value": "Softing OPC UA C++ Server SDK, Secure Integration Server, edgeConnector, edgeAggregator, OPC Suite y uaGate est\u00e1n afectados por una vulnerabilidad de desreferencia de puntero NULL."}], "id": "CVE-2022-1748", "lastModified": "2022-08-19T12:37:30.193", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 3.6, "source": "ics-cert@hq.dhs.gov", "type": "Secondary"}]}, "published": "2022-08-17T21:15:08.717", "references": [{"source": "ics-cert@hq.dhs.gov", "tags": ["Mitigation", "Vendor Advisory"], "url": "https://industrial.softing.com/fileadmin/psirt/downloads/syt-2022-7.html"}, {"source": "ics-cert@hq.dhs.gov", "tags": ["Mitigation", "Third Party Advisory", "US Government Resource"], "url": "https://www.cisa.gov/uscert/ics/advisories/icsa-22-228-04"}], "sourceIdentifier": "ics-cert@hq.dhs.gov", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-476"}], "source": "nvd@nist.gov", "type": "Primary"}, {"description": [{"lang": "en", "value": "CWE-476"}], "source": "ics-cert@hq.dhs.gov", "type": "Secondary"}]}