CVE-2022-45937

13.12.2022, 16:15

A vulnerability has been identified in APOGEE PXC Compact (BACnet) (All versions < V3.5.5), APOGEE PXC Compact (P2 Ethernet) (All versions < V2.8.20), APOGEE PXC Modular (BACnet) (All versions < V3.5.5), APOGEE PXC Modular (P2 Ethernet) (All versions < V2.8.20), TALON TC Compact (BACnet) (All versions < V3.5.5), TALON TC Modular (BACnet) (All versions < V3.5.5). A low privilege authenticated attacker with network access to the integrated web server could download sensitive information from the device containing user account credentials.

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	8.8 HIGH	NETWORK	LOW	LOW	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
siemens	CNA	8.8 HIGH				CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C
CVE	ADP	---				---
CISA-ADP	ADP	---				---

Base Score

CVSS 3.x

EPSS Score

Percentile: 38%

Vendor	Product	Version
siemens	pxc00-e96.a_firmware	𝑥 < 3.5.5
siemens	pxc100-e96.a_firmware	𝑥 < 3.5.5
siemens	pxx-485.3_firmware	𝑥 < 3.5.5
siemens	pxc16.2-pe.a_firmware	𝑥 < 2.8.20
siemens	pxc24.2-pe.a_firmware	𝑥 < 2.8.20
siemens	pxc24.2-pef.a_firmware	𝑥 < 2.8.20
siemens	pxc24.2-per.a_firmware	𝑥 < 2.8.20
siemens	pxc24.2-perf.a_firmware	𝑥 < 2.8.20
siemens	talon_tc_modular_\(bacnet\)_firmware	𝑥 < 3.5.5

𝑥

= Vulnerable software versions

Common Weakness Enumeration

CWE-284 - Improper Access Control
The software does not restrict or incorrectly restricts access to a resource from an unauthorized actor.

References

https://cert-portal.siemens.com/productcert/pdf/ssa-180579.pdf