Strix
26.1K

CVE-2022-29963

MEDIUMCVSS 5.5/10EPSS 0.23%

Last modified

CVE-2022-29963 is a medium-severity vulnerability rated 5.5/10 on the CVSS scale. The Emerson DeltaV Distributed Control System (DCS) controllers and IO cards through 2022-04-29 misuse passwords. TELNET on port 18550 provides access to a root shell via hardcoded credentials. EPSS estimates a 0.23% chance of exploitation in the next 30 days.

Description

The Emerson DeltaV Distributed Control System (DCS) controllers and IO cards through 2022-04-29 misuse passwords. TELNET on port 18550 provides access to a root shell via hardcoded credentials. This affects S-series, P-series, and CIOC/EIOC nodes. NOTE: this is different from CVE-2014-2350.

Metrics

CVSS 3.1
5.5/10

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

EPSS Probability
0.23%

13.2th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

Affected Software

VendorProductVersions
EmersonDeltav Distributed Control System Sq Controller Firmware<= 2022-04-29
EmersonDeltav Distributed Control System Sx Controller Firmware<= 2022-04-29
EmersonSe4002s1t2b6 High Side 40-Pin Mass I\/O Terminal Block Firmware<= 2022-04-29
EmersonSe4003s2b4 16-Pin Mass I\/O Terminal Block Firmware<= 2022-04-29
EmersonSe4003s2b524-Pin Mass I\/O Terminal Block Firmware<= 2022-04-29
EmersonSe4017p0 H1 I\/O Interface Card And Terminl Block Firmware<= 2022-04-29
EmersonSe4017p1 H1 I\/O Card With Integrated Power Firmware<= 2022-04-29
EmersonSe4019p0 Simplex H1 4-Port Plus Fieldbus I\/O Interface With Terminalblock Firmware<= 2022-04-29
EmersonSe4026 Virtual I\/O Module 2 Firmware<= 2022-04-29
EmersonSe4027 Virtual I\/O Module 2 Firmware<= 2022-04-29
EmersonSe4032s1t2b8 High Side 40-Pin Do Mass I\/O Terminal Block Firmware<= 2022-04-29
EmersonSe4037p0 H1 I\/O Interface Card And Terminl Block Firmware<= 2022-04-29
EmersonSe4037p1 Redundant H1 I\/O Card With Integrated Power And Terminal Block Firmware<= 2022-04-29
EmersonSe4039p0 Redundant H1 4-Port Plus Fieldbus I\/O Interface With Terminalblock Firmware<= 2022-04-29
EmersonSe4052s1t2b6 High Side 40-Pin Mass I\/O Terminal Block Firmware<= 2022-04-29
EmersonSe4082s1t2b8 High Side 40-Pin Do Mass I\/O Terminal Block Firmware<= 2022-04-29
EmersonSe4100 Simplex Ethernet I\/O Card \(Eioc\) Assembly Firmware<= 2022-04-29
EmersonSe4101 Simplex Ethernet I\/O Card \(Eioc\) Assembly Firmware<= 2022-04-29
EmersonSe4801t0x Redundant Wireless I\/O Card Firmware<= 2022-04-29
EmersonVe4103 Modbus Tcp Interface For Ethernet Connected I\/O \(Eioc\) Firmware<= 2022-04-29
EmersonVe4104 Ethernet\/Ip Control Tag Integration For Ethernet Connected I\/O \(Eioc\) Firmware<= 2022-04-29
EmersonVe4105 Ethernet\/Ip Interface For Ethernet Connected I\/O \(Eioc\) Firmware<= 2022-04-29
EmersonVe4106 Opc-Ua Client For Ethernet Connected I\/O \(Eioc\) Firmware<= 2022-04-29
EmersonVe4107 Iec 61850 Mms Interface For Ethernet Connected I\/O \(Eioc\) Firmware<= 2022-04-29

References

Timeline

Published
Last Modified
Status
Modified

Frequently Asked Questions

What is CVE-2022-29963?
The Emerson DeltaV Distributed Control System (DCS) controllers and IO cards through 2022-04-29 misuse passwords. TELNET on port 18550 provides access to a root shell via hardcoded credentials. This affects S-series, P-series, and CIOC/EIOC nodes. NOTE: this is different from CVE-2014-2350.
How severe is CVE-2022-29963?
CVE-2022-29963 has a CVSS score of 5.5/10 (MEDIUM severity). The EPSS model estimates a 0.23% probability of exploitation in the next 30 days.
How do I fix CVE-2022-29963?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2022-29963?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST