Strix
26.1K

CVE-2022-34838

HIGHCVSS 8.4/10EPSS 0.15%

Last modified

CVE-2022-34838 is a high-severity vulnerability rated 8.4/10 on the CVSS scale. Storing Passwords in a Recoverable Format vulnerability in ABB Zenon 8.20 allows an attacker who successfully exploit the vulnerability may add or alter data points and corresponding attributes. Once such engineering data is used the data visualization will be altered for the end user.. EPSS estimates a 0.15% chance of exploitation in the next 30 days.

Description

Storing Passwords in a Recoverable Format vulnerability in ABB Zenon 8.20 allows an attacker who successfully exploit the vulnerability may add or alter data points and corresponding attributes. Once such engineering data is used the data visualization will be altered for the end user.

Metrics

CVSS 3.1
8.4/10

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N

EPSS Probability
0.15%

4.2th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

Affected Software

VendorProductVersions
AbbZenon<= 8.20

References

Timeline

Published
Last Modified
Status
Modified

Frequently Asked Questions

What is CVE-2022-34838?
Storing Passwords in a Recoverable Format vulnerability in ABB Zenon 8.20 allows an attacker who successfully exploit the vulnerability may add or alter data points and corresponding attributes. Once such engineering data is used the data visualization will be altered for the end user.
How severe is CVE-2022-34838?
CVE-2022-34838 has a CVSS score of 8.4/10 (HIGH severity). The EPSS model estimates a 0.15% probability of exploitation in the next 30 days.
How do I fix CVE-2022-34838?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2022-34838?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST