CVE-2022-31805 - OpenCVE

In the CODESYS Development System multiple components in multiple versions transmit the passwords for the communication between clients and servers unprotected.

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact None

Availability Impact None

User Interaction None

No CVSS v3.0

Access Vector Network

Access Complexity Medium

Authentication None

Confidentiality Impact Partial

Integrity Impact None

Availability Impact None

AV:N/AC:M/Au:N/C:P/I:N/A:N

Vendors & Products
CPE Configurations

Vendors	Products
Codesys	Gateway Plchandler Sp Realtime Nt Plcwinnt Web Server Opc Server Runtime Toolkit Development System Hmi Sl Edge Gateway

Configuration 1 [-]

OR	cpe:2.3:a:codesys:development_system::::::::
	cpe:2.3:a:codesys:edge_gateway::::::windows::*
	cpe:2.3:a:codesys:gateway::::::::
	cpe:2.3:a:codesys:hmi_sl::::::::
	cpe:2.3:a:codesys:opc_server::::::::
	cpe:2.3:a:codesys:plchandler::::::::
	cpe:2.3:a:codesys:plcwinnt::::::::
	cpe:2.3:a:codesys:runtime_toolkit:::::::x86:*
	cpe:2.3:a:codesys:sp_realtime_nt::::::::
	cpe:2.3:a:codesys:web_server::::::::

References

Link	Resource
https://customers.codesys.com/index.php?eID=dumpFile&t=f&f=17140&token=6aa2c5c4a8b83b8b09936fefed5b0b11f9d2cc6c&download=	Vendor Advisory

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: CERTVDE

Published: 2022-06-23T00:00:00

Updated: 2023-05-09T12:54:39.506Z

Reserved: 2022-05-30T00:00:00

Link: CVE-2022-31805

JSON object: View

NVD Information

Status : Modified

Published: 2022-06-24T08:15:07.590

Modified: 2023-05-09T13:15:15.160

Link: CVE-2022-31805

JSON object: View

Redhat Information

No data.

CWE

CWE-523

{"containers": {"cna": {"affected": [{"defaultStatus": "unaffected", "product": "CODESYS Development System", "vendor": "CODESYS", "versions": [{"lessThan": "V2.3.9.69", "status": "affected", "version": "V2", "versionType": "custom"}, {"lessThan": "V3.5.18.30", "status": "affected", "version": "V3", "versionType": "custom"}]}, {"defaultStatus": "unaffected", "product": "CODESYS Gateway Client", "vendor": "CODESYS", "versions": [{"lessThan": "V2.3.9.38", "status": "affected", "version": "V2", "versionType": "custom"}]}, {"defaultStatus": "unaffected", "product": "CODESYS Gateway Server", "vendor": "CODESYS", "versions": [{"lessThan": "V2.3.9.38", "status": "affected", "version": "V2", "versionType": "custom"}]}, {"defaultStatus": "unaffected", "product": "CODESYS Web server", "vendor": "CODESYS", "versions": [{"lessThan": " V1.1.9.23", "status": "affected", "version": "V1", "versionType": "custom"}]}, {"defaultStatus": "unaffected", "product": "CODESYS SP Realtime NT", "vendor": "CODESYS", "versions": [{"lessThan": "V2.3.7.30", "status": "affected", "version": "V2", "versionType": "custom"}]}, {"defaultStatus": "unaffected", "product": "CODESYS PLCWinNT", "vendor": "CODESYS", "versions": [{"lessThan": "V2.4.7.57", "status": "affected", "version": "V2", "versionType": "custom"}]}, {"defaultStatus": "unaffected", "product": "CODESYS Runtime Toolkit 32 bit full", "vendor": "CODESYS", "versions": [{"lessThan": "V2.4.7.57", "status": "affected", "version": "V2", "versionType": "custom"}]}, {"defaultStatus": "unaffected", "product": "CODESYS Edge Gateway for Windows", "vendor": "CODESYS", "versions": [{"lessThan": "V3.5.18.30", "status": "affected", "version": "V3", "versionType": "custom"}]}, {"defaultStatus": "unaffected", "product": "CODESYS HMI (SL)", "vendor": "CODESYS", "versions": [{"lessThan": "V3.5.18.30", "status": "affected", "version": "V3", "versionType": "custom"}]}, {"defaultStatus": "unaffected", "product": "CODESYS OPC DA Server SL", "vendor": "CODESYS", "versions": [{"lessThan": "V3.5.18.30", "status": "affected", "version": "V3", "versionType": "custom"}]}, {"defaultStatus": "unaffected", "product": "CODESYS PLCHandler", "vendor": "CODESYS", "versions": [{"lessThan": "V3.5.18.30", "status": "affected", "version": "V3", "versionType": "custom"}]}, {"defaultStatus": "unaffected", "product": "CODESYS Gateway", "vendor": "CODESYS", "versions": [{"lessThan": "V3.5.18.30", "status": "affected", "version": "V3", "versionType": "custom"}]}], "datePublic": "2022-06-22T22:00:00.000Z", "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "<p>In the CODESYS Development System multiple components in multiple versions transmit the passwords for the communication between clients and servers unprotected.</p>"}], "value": "In the CODESYS Development System multiple components in multiple versions transmit the passwords for the communication between clients and servers unprotected.\n\n"}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "version": "3.1"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-523", "description": "CWE-523 Unprotected Transport of Credentials", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "270ccfa6-a436-4e77-922e-914ec3a9685c", "shortName": "CERTVDE", "dateUpdated": "2023-05-09T12:54:39.506Z"}, "references": [{"tags": ["x_refsource_CONFIRM"], "url": "https://customers.codesys.com/index.php?eID=dumpFile&t=f&f=17140&token=6aa2c5c4a8b83b8b09936fefed5b0b11f9d2cc6c&download="}], "source": {"defect": ["CERT@VDE#", "64140"], "discovery": "UNKNOWN"}, "title": "Insecure transmission of credentials ", "x_generator": {"engine": "Vulnogram 0.0.9"}, "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "info@cert.vde.com", "DATE_PUBLIC": "2022-06-23T10:00:00.000Z", "ID": "CVE-2022-31805", "STATE": "PUBLIC", "TITLE": "Insecure transmission of credentials "}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "CODESYS Development System", "version": {"version_data": [{"version_affected": "<", "version_name": "V2", "version_value": "V2.3.9.69"}, {"version_affected": "<", "version_name": "V3", "version_value": "V3.5.18.20"}]}}, {"product_name": "CODESYS Gateway Client", "version": {"version_data": [{"version_affected": "<", "version_name": "V2", "version_value": "V2.3.9.38"}]}}, {"product_name": "CODESYS Gateway Server", "version": {"version_data": [{"version_affected": "<", "version_name": "V2", "version_value": "V2.3.9.38"}]}}, {"product_name": "CODESYS Web server", "version": {"version_data": [{"version_affected": "<", "version_name": "V1", "version_value": " V1.1.9.23"}]}}, {"product_name": "CODESYS SP Realtime NT", "version": {"version_data": [{"version_affected": "<", "version_name": "V2", "version_value": "V2.3.7.30"}]}}, {"product_name": "CODESYS PLCWinNT", "version": {"version_data": [{"version_affected": "<", "version_name": "V2", "version_value": "V2.4.7.57"}]}}, {"product_name": "CODESYS Runtime Toolkit 32 bit full", "version": {"version_data": [{"version_affected": "<", "version_name": "V2", "version_value": "V2.4.7.57"}]}}, {"product_name": "CODESYS Edge Gateway for Windows", "version": {"version_data": [{"version_affected": "<", "version_name": "V3", "version_value": "V3.5.18.20"}]}}, {"product_name": "CODESYS HMI (SL)", "version": {"version_data": [{"version_affected": "<", "version_name": "V3", "version_value": "V3.5.18.20"}]}}, {"product_name": "CODESYS OPC DA Server SL", "version": {"version_data": [{"version_affected": "<", "version_name": "V3", "version_value": "V3.5.18.20"}]}}, {"product_name": "CODESYS PLCHandler", "version": {"version_data": [{"version_affected": "<", "version_name": "V3", "version_value": "V3.5.18.20"}]}}, {"product_name": "CODESYS Gateway", "version": {"version_data": [{"version_affected": "<", "version_name": "V3", "version_value": "V3.5.18.20"}]}}]}, "vendor_name": "CODESYS"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "In the CODESYS Development System multiple components in multiple versions transmit the passwords for the communication between clients and servers unprotected."}]}, "generator": {"engine": "Vulnogram 0.0.9"}, "impact": {"cvss": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "version": "3.1"}}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "CWE-523 Unprotected Transport of Credentials"}]}]}, "references": {"reference_data": [{"name": "https://customers.codesys.com/index.php?eID=dumpFile&t=f&f=17140&token=6aa2c5c4a8b83b8b09936fefed5b0b11f9d2cc6c&download=", "refsource": "CONFIRM", "url": "https://customers.codesys.com/index.php?eID=dumpFile&t=f&f=17140&token=6aa2c5c4a8b83b8b09936fefed5b0b11f9d2cc6c&download="}]}, "source": {"defect": ["CERT@VDE#", "64140"], "discovery": "UNKNOWN"}}}}, "cveMetadata": {"assignerOrgId": "270ccfa6-a436-4e77-922e-914ec3a9685c", "assignerShortName": "CERTVDE", "cveId": "CVE-2022-31805", "datePublished": "2022-06-23T00:00:00", "dateReserved": "2022-05-30T00:00:00", "dateUpdated": "2023-05-09T12:54:39.506Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:codesys:development_system:*:*:*:*:*:*:*:*", "matchCriteriaId": "85D06342-38A2-4E95-BE56-08D54271E41F", "versionEndExcluding": "2.3.9.69", "vulnerable": true}, {"criteria": "cpe:2.3:a:codesys:edge_gateway:*:*:*:*:*:windows:*:*", "matchCriteriaId": "EC5C6832-F0B3-46DF-8047-22A2544D937C", "versionEndExcluding": "3.5.18.30", "vulnerable": true}, {"criteria": "cpe:2.3:a:codesys:gateway:*:*:*:*:*:*:*:*", "matchCriteriaId": "6B9AE405-A0E5-48FF-9E8C-1A323D296445", "versionEndExcluding": "2.3.9.38", "vulnerable": true}, {"criteria": "cpe:2.3:a:codesys:hmi_sl:*:*:*:*:*:*:*:*", "matchCriteriaId": "F23A1B9F-97EE-4E4C-AAB9-511B4A3ED98C", "versionEndExcluding": "3.5.18.30", "vulnerable": true}, {"criteria": "cpe:2.3:a:codesys:opc_server:*:*:*:*:*:*:*:*", "matchCriteriaId": "46CDFB44-9702-4978-B577-9D07DF3D04B0", "versionEndExcluding": "3.5.18.30", "vulnerable": true}, {"criteria": "cpe:2.3:a:codesys:plchandler:*:*:*:*:*:*:*:*", "matchCriteriaId": "4932F620-43F8-4F3F-80AE-CD603BF05962", "versionEndExcluding": "3.5.18.30", "vulnerable": true}, {"criteria": "cpe:2.3:a:codesys:plcwinnt:*:*:*:*:*:*:*:*", "matchCriteriaId": "6887DEB0-5C13-4D7B-86E6-504D8CBB2A0D", "versionEndExcluding": "2.4.7.57", "vulnerable": true}, {"criteria": "cpe:2.3:a:codesys:runtime_toolkit:*:*:*:*:*:*:x86:*", "matchCriteriaId": "5A605019-68F5-4C21-96BD-C300DECAA3D8", "versionEndExcluding": "2.4.7.57", "vulnerable": true}, {"criteria": "cpe:2.3:a:codesys:sp_realtime_nt:*:*:*:*:*:*:*:*", "matchCriteriaId": "14F1D049-7DF2-453A-9D5A-7FCBCAD465E3", "versionEndExcluding": "2.3.7.30", "vulnerable": true}, {"criteria": "cpe:2.3:a:codesys:web_server:*:*:*:*:*:*:*:*", "matchCriteriaId": "971AF379-F2B6-4791-B153-718517CA3E62", "versionEndExcluding": "1.1.9.23", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "In the CODESYS Development System multiple components in multiple versions transmit the passwords for the communication between clients and servers unprotected.\n\n"}, {"lang": "es", "value": "En CODESYS Development System, varios componentes en diversos versiones transmiten las contrase\u00f1as para la comunicaci\u00f3n entre clientes y servidores sin protecci\u00f3n"}], "id": "CVE-2022-31805", "lastModified": "2023-05-09T13:15:15.160", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 3.6, "source": "info@cert.vde.com", "type": "Primary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Secondary"}]}, "published": "2022-06-24T08:15:07.590", "references": [{"source": "info@cert.vde.com", "tags": ["Vendor Advisory"], "url": "https://customers.codesys.com/index.php?eID=dumpFile&t=f&f=17140&token=6aa2c5c4a8b83b8b09936fefed5b0b11f9d2cc6c&download="}], "sourceIdentifier": "info@cert.vde.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-523"}], "source": "info@cert.vde.com", "type": "Primary"}]}