Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
osvGoogleOSV:CVE-2022-45094
HistoryJan 10, 2023 - 12:15 p.m.

CVE-2022-45094

2023-01-1012:15:23
Google
osv.dev
7
vulnerability
sinec ins
authenticated
remote attacker
web based management
command injection
dhcp
remote code execution

AI Score

9.6

Confidence

High

EPSS

0.002

Percentile

58.8%

JSON

A vulnerability has been identified in SINEC INS (All versions < V1.0 SP2 Update 1). An authenticated remote attacker with access to the Web Based Management (443/tcp) of the affected product, could potentially inject commands into the dhcpd configuration of the affected product. An attacker might leverage this to trigger remote code execution on the affected component.

Related

cvelist 1
cve 1
cnvd 1
nvd 1
prion 1
nessus 1
ics 1
cvelist
cvelist
CVE-2022-45094
2023-01-10 11:39:44
cve
cve
CVE-2022-45094
2023-01-10 12:15:23
cnvd
cnvd
Siemens SINEC INS Command Injection Vulnerability
2023-01-13 00:00:00
nvd
nvd
CVE-2022-45094
2023-01-10 12:15:23
prion
prion
Remote code execution
2023-01-10 12:15:00
nessus
nessus
Siemens SIMATIC and SCALANCE Products Inadequate Encryption Strength (CVE-2022-2097)
2024-07-23 00:00:00
ics
ics
Siemens SINEC INS
2023-01-17 12:00:00

AI Score

9.6

Confidence

High

EPSS

0.002

Percentile

58.8%

JSON
Related for OSV:CVE-2022-45094
cvelist1cve1cnvd1nvd1prion1nessus1ics1