CVE-2022-2002

GE CIMPICITY versions 2022 and prior is vulnerable when data from faulting address controls code flow starting at gmmiObj!CGmmiOptionContainer, which could allow an attacker to execute arbitrary code.
References
Link Resource
https://www.cisa.gov/uscert/ics/advisories/icsa-22-326-04 Third Party Advisory US Government Resource
Configurations

Configuration 1

cpe:2.3:a:ge:cimplicity:*:*:*:*:*:*:*:*

Information

Published : 2022-12-07 11:15

Updated : 2022-12-09 08:52


NVD link : CVE-2022-2002

Mitre link : CVE-2022-2002

Products Affected
No products.
CWE