CVE-2022-2825

Summary

CVE	CVE-2022-2825
State	PUBLIC
Assigner	[email protected]
Source Priority	CVE Program / NVD first with legacy fallback
Published	2023-03-29 19:15:00 UTC
Updated	2023-04-20 16:15:00 UTC
Description	This vulnerability allows remote attackers to execute arbitrary code on affected installations of Kepware KEPServerEX 6.11.718.0. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of text encoding conversions. The issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a stack-based buffer. An attacker can leverage this vulnerability to execute code in the context of SYSTEM. Was ZDI-CAN-18411.

Risk And Classification

Problem Types: CWE-121

NVD Known Affected Configurations (CPE 2.3)

Type	Vendor	Product	Version	Update	Edition	Language
Application	Ge	Industrial Gateway Server	All	All	All	All
Application	Ptc	Kepware Kepserverex	All	All	All	All
Application	Ptc	Opc-aggregator	All	All	All	All
Application	Ptc	Thingworx Industrial Connectivity	-	All	All	All
Application	Ptc	Thingworx Kepware Edge	All	All	All	All
Application	Ptc	Thingworx Kepware Server	All	All	All	All
Application	Rockwellautomation	Kepserver Enterprise	All	All	All	All
Application	Softwaretoolbox	Top Server	All	All	All	All

References

Reference	Source	Link	Tags
PTC Kepware KEPServerEX (Update A) \| CISA	MISC	www.cisa.gov
ZDI-22-1455 \| Zero Day Initiative	MISC	www.zerodayinitiative.com
CVE Program record	CVE.ORG	www.cve.org	canonical
NVD vulnerability detail	NVD	nvd.nist.gov	canonical, analysis

No vendor comments have been submitted for this CVE.

Legacy QID Mappings

591214 PTC Products Multiple Vulnerabilities (ICSA-22-242-10)
591239 PTC Kepware KEPServerEX (Update A) Multiple Vulnerabilities (ICSA-22-242-10)