CVE-2022-2334: Softing Secure Integration Server Uncontrolled Search Path Element
First published: Wed Aug 17 2022(Updated: )
The application searches for a library dll that is not found. If an attacker can place a dll with this name, then the attacker can leverage it to execute arbitrary code on the targeted Softing Secure Integration Server V1.22.
Credit: ics-cert@hq.dhs.gov
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Softing edgeAggregator | =3.1 | |
| Softing edgeConnector | =3.1 | |
| Softing OPC | =5.2 | |
| Softing Opc Ua C\+\+ Software Development Kit | =6 | |
| Softing Secure Integration Server | =1.22 | |
| Softing Uagates | =1.74 | |
| Softing Secure Integration Server: Version 1.22 and prior | ||
| Softing edgeConnector | =3.1 | |
| Softing edgeAggregator | =3.1 | |
| Softing OPC UA C++ Server SDK | =6 | |
| Softing OPC Suite | =5.2 | |
| Softing uaGate | =1.74 |
Remedy
Softing released new versions to address these vulnerabilities and notified known users of the releases. Users are advised to update to the new versions: Softing Secure Integration Server V1.30 The latest software packages can be downloaded from the Softing website. Softing recommends the following mitigations and workarounds: Change the admin password or create a new user with administrative rights and delete the default admin user. Configure the Windows firewall to block network requests to IP port 9000. Disable the HTTP Server in NGINX configuration of the Softing Secure Integration Server, only using the HTTPS server. For more details on these vulnerabilities and mitigations, users should see SYT-2022-5 on the Softing security website.
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2022-2334?
CVE-2022-2334 is a vulnerability that allows an attacker to execute arbitrary code on the targeted Softing Secure Integration Server V1.22.
How does CVE-2022-2334 work?
CVE-2022-2334 occurs when the application searches for a library DLL that is not found, and if an attacker can place a DLL with the same name, they can leverage it to execute arbitrary code.
What software is affected by CVE-2022-2334?
Softing Edgeaggregator, Softing Edgeconnector, Softing OPC, Softing Opc Ua C++ Software Development Kit, Softing Secure Integration Server, and Softing Uagates are affected by CVE-2022-2334.
What is the severity of CVE-2022-2334?
The severity of CVE-2022-2334 is high, with a CVSS severity score of 7.2.
How do I fix CVE-2022-2334?
To fix CVE-2022-2334, it is recommended to apply the software patches provided by Softing and follow the recommendations outlined in the security advisory.
- agent/type
- agent/references
- agent/weakness
- agent/author
- agent/description
- collector/nvd-index
- agent/software-canonical-lookup-request
- collector/ics-cert-advisory
- source/ICS
- agent/software-canonical-lookup
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/title
- agent/remedy
- agent/severity
- agent/last-modified-date
- agent/event
- agent/first-publish-date
- agent/trending
- agent/tags
- agent/source
- vendor/softing
- canonical/softing edgeaggregator
- version/softing edgeaggregator/3.1
- canonical/softing edgeconnector
- version/softing edgeconnector/3.1
- canonical/softing opc
- version/softing opc/5.2
- canonical/softing opc ua c\+\+ software development kit
- version/softing opc ua c\+\+ software development kit/6
- canonical/softing secure integration server
- version/softing secure integration server/1.22
- canonical/softing uagates
- version/softing uagates/1.74
- canonical/softing secure integration server: version 1.22 and prior
- canonical/softing opc ua c++ server sdk
- version/softing opc ua c++ server sdk/6
- canonical/softing opc suite
- version/softing opc suite/5.2
- canonical/softing uagate
- version/softing uagate/1.74