Detections
Analytics

Rockwell Automation LP30/40/50 and BM40 Operator Interface Stack-Based Buffer Overflow (CVE-2022-47389)

high Tenable OT Security Plugin ID 501655

Synopsis

The remote OT asset is affected by a vulnerability.

Description

An authenticated remote attacker may use a stack based out-of-bounds write vulnerability in the CmpTraceMgr Component of multiple CODESYS products in multiple versions to write data into the stack which can lead to a denial-of-service condition, memory overwriting, or remote code execution.

Wago PFC200 and Compact Controllers support Codesys V3.

This plugin only works with Tenable.ot.
Please visit https://www.tenable.com/products/tenable-ot for more information.

Solution

The following text was originally created by the Cybersecurity and Infrastructure Security Agency (CISA). The original can be found at CISA.gov.

Rockwell Automation recommend users using the affected software to apply the risk mitigations, if possible:

- Upgrade to CODESYS version 3.5.19.2 which has been released to mitigate these issues.
- Additionally, we encourage the user to implement our suggested security best practices to minimize risk of the vulnerability.

Users can use Stakeholder-Specific Vulnerability Categorization to generate more environment-specific prioritization.

Additional information can be found in the CODESYS Advisory.

See Also

http://www.nessus.org/u?2db205d9

http://www.nessus.org/u?7a14aee1

https://www.cisa.gov/news-events/ics-advisories/icsa-24-030-07

Plugin Details

Severity: High

ID: 501655

File Name: tenable_ot_wago_CVE-2022-47389.nasl

Version: 1.2

Type: remote

Family: Tenable.ot

Published: 9/18/2023

Updated: 2/14/2026

Supported Sensors: Tenable OT Security

Risk Information

VPR

Risk Factor: Medium

Score: 6.7

CVSS v2

Risk Factor: High

Base Score: 9

Temporal Score: 6.7

Vector: CVSS2#AV:N/AC:L/Au:S/C:C/I:C/A:C

CVSS Score Source: CVE-2022-47389

CVSS v3

Risk Factor: High

Base Score: 8.8

Temporal Score: 7.7

Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C

Vulnerability Information

CPE: cpe:/o:wago:751-9301_firmware, cpe:/o:wago:pfc200_firmware

Required KB Items: Tenable.ot/Wago

Exploit Ease: No known exploits are available

Patch Publication Date: 4/3/2019

Vulnerability Publication Date: 4/3/2019

Reference Information

CVE: CVE-2022-47389

CWE: 787