CVE-2022-2179

The X-Frame-Options header in Rockwell Automation MicroLogix 1100/1400 Versions 21.007 and prior is not configured in the HTTP response, which could allow clickjacking attacks.
References
Link Resource
https://www.cisa.gov/uscert/ics/advisories/icsa-22-188-01 Third Party Advisory US Government Resource
https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/1135994 Permissions Required Vendor Advisory
Configurations

Configuration 1


Information

Published : 2022-07-20 04:15

Updated : 2022-07-27 09:45


NVD link : CVE-2022-2179

Mitre link : CVE-2022-2179

CWE
CWE-1021

Improper Restriction of Rendered UI Layers or Frames