CVE-2022-3270
Published: Dec 1, 2022
Modified: Apr 24, 2025
CVSS v3.1
9.8
Description
In multiple products by Festo a remote unauthenticated attacker could use functions of an undocumented protocol which could lead to a complete loss of confidentiality, integrity and availability.
| Vendor | Product | Versions |
|---|---|---|
Festo SE | Bus module CPX-E-EP | affected all |
Festo SE | Bus node CPX-FB32 | affected all |
Festo SE | Bus node CPX-FB33 | affected all |
Festo SE | Bus node CPX-FB36 | affected all |
Festo SE | Bus node CPX-FB37 | affected all |
Festo SE | Bus node CPX-FB39 | affected all |
Festo SE | Bus node CPX-FB40 | affected all |
Festo SE | Bus node CPX-FB43 | affected all |
Festo SE | Bus node CPX-M-FB34 | affected all |
Festo SE | Bus node CPX-M-FB35 | affected all |
Festo SE | Bus node CPX-M-FB44 | affected all |
Festo SE | Bus node CPX-M-FB45 | affected all |
Festo SE | Bus node CTEU-EP | affected all |
Festo SE | Bus node CTEU-PN | affected all |
Festo SE | Bus node CTEU-PN-EX1C | affected all |
Festo SE | Camera system CHB-C-N | affected all |
Festo SE | Compact Vision System SBO*-C-* | affected all |
Festo SE | Compact Vision System SBO*-M-* | affected all |
Festo SE | Compact Vision System SBO*-Q-* | affected all |
Festo SE | Control block CPX-CEC | affected all |
Festo SE | Control block CPX-CEC-C1 | affected all |
Festo SE | Control block CPX-CEC-C1-V3 | affected all |
Festo SE | Control block CPX-CEC-M1 | affected all |
Festo SE | Control block CPX-CEC-M1-V3 | affected all |
Festo SE | Control block CPX-CEC-S1-V3 | affected all |
Festo SE | Control block CPX-CMXX | affected all |
Festo SE | Control block CPX-CMXX | affected all |
Festo SE | Control block CPX-FEC-1-IE | affected all |
Festo SE | Controller CECC-D | affected all |
Festo SE | Controller CECC-D-BA | affected all |
Festo SE | Controller CECC-LK | affected all |
Festo SE | Controller CECC-S | affected all |
Festo SE | Controller CECC-X-* | affected all |
Festo SE | Controller CECX-X-C1 | affected all |
Festo SE | Controller CECX-X-M1 | affected all |
Festo SE | Controller CMXH-ST2-C5-7-DIOP | affected all |
Festo SE | Controller CPX-E-CEC-* | affected all |
Festo SE | Controller SBRD-Q | affected all |
Festo SE | EtherNet/IP interface CPX-AP-I-EP-M12 | affected all |
Festo SE | EtherNet/IP interface CPX-AP-I-PN-M12 | affected all |
Festo SE | Gateway CPX-IOT | affected all |
Festo SE | Integrated drive EMCA-EC-67-* | affected all |
Festo SE | Motor controller CMMO-ST-C5-1-DION | affected all |
Festo SE | Motor controller CMMO-ST-C5-1-DIOP | affected all |
Festo SE | Motor controller CMMO-ST-C5-1-LKP | affected all |
Festo SE | Motor controller CMMP-AS-* | affected all |
Festo SE | Motor controller CMMT-AS-* | affected all |
Festo SE | Operator unit CDPX-X-A-S-10 | affected all |
Festo SE | Operator unit CDPX-X-A-W-13 | affected all |
Festo SE | Operator unit CDPX-X-A-W-4 | affected all |
Festo SE | Operator unit CDPX-X-A-W-7 | affected all |
Festo SE | Planar surface gantry EXCM-* | affected all |
Festo SE | Servo drive CMMT-ST-C8-1C-EP-S0 | affected all |
Festo SE | Servo drive CMMT-ST-C8-1C-PN-S0 | affected all |
Festo SE | VTEM-S1-* | affected all |
Festo SE | Bus module CPX-E-PN | affected all |
Weaknesses (CWE)
CVSS v3.1 Details
CVSS v3.1 Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now