CVE-2022-29965
First published: Tue Jul 26 2022(Updated: )
The Emerson DeltaV Distributed Control System (DCS) controllers and IO cards through 2022-04-29 misuse passwords. Access to privileged operations on the maintenance port TELNET interface (23/TCP) on M-series and SIS (CSLS/LSNB/LSNG) nodes is controlled by means of utility passwords. These passwords are generated using a deterministic, insecure algorithm using a single seed value composed of a day/hour/minute timestamp with less than 16 bits of entropy. The seed value is fed through a lookup table and a series of permutation operations resulting in three different four-character passwords corresponding to different privilege levels. An attacker can easily reconstruct these passwords and thus gain access to privileged maintenance operations. NOTE: this is different from CVE-2014-2350.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Emerson DeltaV Distributed Control System Sx Controller | <=2022-04-29 | |
| Emerson DeltaV Distributed Control System | <=2022-04-29 | |
| Emerson DeltaV Distributed Control System | ||
| Emerson DeltaV Distributed Control System | <=2022-04-29 | |
| Emerson DeltaV Distributed Control System Sx Controller | ||
| Emerson Se4002s1t2b6 High Side 40-pin Mass I/o Terminal Block Firmware | <=2022-04-29 | |
| Emerson Se4002s1t2b6 High Side 40-pin Mass I/o Terminal Block | ||
| Emerson Se4003s2b4 16-pin Mass I/O Terminal Block Firmware | <=2022-04-29 | |
| Emerson Se4003s2b4 16-pin Mass I/o Terminal Block | ||
| Emerson Se4003s2b524-pin Mass I/o Terminal Block Firmware | <=2022-04-29 | |
| Emerson Se4003s2b524-pin Mass I/o Terminal Block | ||
| Emerson Se4017p0 H1 I/o Interface Card And Terminl Block Firmware | <=2022-04-29 | |
| Emerson Se4017p0 H1 I/o Interface Card And Terminal Block | ||
| Emerson Se4017p1 H1 I/O Card With Integrated Power Firmware | <=2022-04-29 | |
| Emerson Se4017p1 H1 I/o Card With Integrated Power | ||
| Emerson Se4019p0 Simplex H1 4-port Plus Fieldbus I/o Interface With Terminalblock Firmware | <=2022-04-29 | |
| Emerson Se4019p0 Simplex H1 4-port Plus Fieldbus I/o Interface With Terminalblock | ||
| Emerson Se4026 Virtual I/o Module 2 Firmware | <=2022-04-29 | |
| Emerson Se4026 Virtual I/o Module 2 | ||
| Emerson Se4027 Virtual I/o Module 2 Firmware | <=2022-04-29 | |
| Emerson Se4027 Virtual I/o Module 2 | ||
| Emerson Se4032s1t2b8 High Side 40-pin Do Mass I/o Terminal Block Firmware | <=2022-04-29 | |
| Emerson Se4032s1t2b8 High Side 40-pin Do Mass I/o Terminal Block | ||
| Emerson Se4037p0 H1 I/O Interface Card and Terminal Block Firmware | <=2022-04-29 | |
| Emerson Se4037p0 H1 I/O Interface Card and Terminal Block | ||
| Emerson Se4037p1 Redundant H1 I/o Card With Integrated Power And Terminal Block Firmware | <=2022-04-29 | |
| Emerson Se4037p1 Redundant H1 I/o Card With Integrated Power And Terminal Block | ||
| Emerson Se4039p0 Redundant H1 4-port Plus Fieldbus I/o Interface With Terminalblock Firmware | <=2022-04-29 | |
| Emerson Se4039p0 Redundant H1 4-port Plus Fieldbus I/o Interface With Terminalblock | ||
| Emerson Se4052s1t2b6 High Side 40-pin Mass I/o Terminal Block Firmware | <=2022-04-29 | |
| Emerson Se4052s1t2b6 High Side 40-pin Mass I/o Terminal Block | ||
| Emerson Se4082s1t2b8 High Side 40-pin Do Mass I/o Terminal Block Firmware | <=2022-04-29 | |
| Emerson Se4082s1t2b8 High Side 40-pin Do Mass I/o Terminal Block | ||
| Emerson Se4100 Simplex Ethernet I/o Card (eioc) Assembly Firmware | <=2022-04-29 | |
| Emerson Se4100 Simplex Ethernet I/o Card (eioc) Assembly | ||
| Emerson Se4101 Simplex Ethernet I/o Card (eioc) Assembly Firmware | <=2022-04-29 | |
| Emerson Se4101 Simplex Ethernet I/o Card (eioc) Assembly | ||
| Emerson Se4801t0x Redundant Wireless I/o Card Firmware | <=2022-04-29 | |
| Emerson Se4801t0x Redundant Wireless I/o Card | ||
| Emerson Ve4103 Modbus Tcp Interface For Ethernet Connected I/o (eioc) Firmware | <=2022-04-29 | |
| Emerson Ve4103 Modbus TCP Interface for Ethernet Connected I/O (EIOC) | ||
| Emerson Ve4104 Ethernet/IP Control Tag Integration for Ethernet Connected I/O (EIOC) Firmware | <=2022-04-29 | |
| Emerson Ve4104 Ethernet/ip Control Tag Integration For Ethernet Connected I/o (eioc) | ||
| Emerson Ve4105 Ethernet/ip Interface For Ethernet Connected I/o (eioc) Firmware | <=2022-04-29 | |
| Emerson Ve4105 Ethernet/ip Interface For Ethernet Connected I/o (eioc) | ||
| Emerson Ve4106 Opc-ua Client For Ethernet Connected I/o (eioc) Firmware | <=2022-04-29 | |
| Emerson Ve4106 Opc-ua Client For Ethernet Connected I/o (eioc) | ||
| Emerson VE4107 IEC 61850 MMS Interface for Ethernet Connected I/O (EIOC) Firmware | <=2022-04-29 | |
| Emerson Ve4107 Iec 61850 Mms Interface For Ethernet Connected I/o (eioc) |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2022-29965?
The severity of CVE-2022-29965 is not specified in the available information but it represents a significant security risk due to improper password management.
How does CVE-2022-29965 affect users?
CVE-2022-29965 allows unauthorized access to privileged operations via the TELNET interface, potentially compromising the control systems.
How do I fix CVE-2022-29965?
To fix CVE-2022-29965, it is recommended to update to the latest version of the affected Emerson DeltaV firmware released after April 29, 2022.
What products are affected by CVE-2022-29965?
CVE-2022-29965 affects various versions of the Emerson DeltaV Distributed Control System and associated IO cards up to and including April 29, 2022.
Is there a workaround for CVE-2022-29965?
Currently, there are no specific workarounds mentioned for CVE-2022-29965, so applying the fix by updating the firmware is advised.
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/author
- agent/weakness
- agent/last-modified-date
- agent/description
- agent/first-publish-date
- agent/severity
- agent/references
- agent/softwarecombine
- agent/event
- collector/ics-cert-advisory
- source/ICS
- agent/software-canonical-lookup
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/emerson
- canonical/emerson deltav distributed control system sx controller
- version/emerson deltav distributed control system sx controller/2022-04-29
- canonical/emerson deltav distributed control system
- version/emerson deltav distributed control system/2022-04-29
- canonical/emerson se4002s1t2b6 high side 40-pin mass i/o terminal block firmware
- version/emerson se4002s1t2b6 high side 40-pin mass i/o terminal block firmware/2022-04-29
- canonical/emerson se4002s1t2b6 high side 40-pin mass i/o terminal block
- canonical/emerson se4003s2b4 16-pin mass i/o terminal block firmware
- version/emerson se4003s2b4 16-pin mass i/o terminal block firmware/2022-04-29
- canonical/emerson se4003s2b4 16-pin mass i/o terminal block
- canonical/emerson se4003s2b524-pin mass i/o terminal block firmware
- version/emerson se4003s2b524-pin mass i/o terminal block firmware/2022-04-29
- canonical/emerson se4003s2b524-pin mass i/o terminal block
- canonical/emerson se4017p0 h1 i/o interface card and terminl block firmware
- version/emerson se4017p0 h1 i/o interface card and terminl block firmware/2022-04-29
- canonical/emerson se4017p0 h1 i/o interface card and terminal block
- canonical/emerson se4017p1 h1 i/o card with integrated power firmware
- version/emerson se4017p1 h1 i/o card with integrated power firmware/2022-04-29
- canonical/emerson se4017p1 h1 i/o card with integrated power
- canonical/emerson se4019p0 simplex h1 4-port plus fieldbus i/o interface with terminalblock firmware
- version/emerson se4019p0 simplex h1 4-port plus fieldbus i/o interface with terminalblock firmware/2022-04-29
- canonical/emerson se4019p0 simplex h1 4-port plus fieldbus i/o interface with terminalblock
- canonical/emerson se4026 virtual i/o module 2 firmware
- version/emerson se4026 virtual i/o module 2 firmware/2022-04-29
- canonical/emerson se4026 virtual i/o module 2
- canonical/emerson se4027 virtual i/o module 2 firmware
- version/emerson se4027 virtual i/o module 2 firmware/2022-04-29
- canonical/emerson se4027 virtual i/o module 2
- canonical/emerson se4032s1t2b8 high side 40-pin do mass i/o terminal block firmware
- version/emerson se4032s1t2b8 high side 40-pin do mass i/o terminal block firmware/2022-04-29
- canonical/emerson se4032s1t2b8 high side 40-pin do mass i/o terminal block
- canonical/emerson se4037p0 h1 i/o interface card and terminal block firmware
- version/emerson se4037p0 h1 i/o interface card and terminal block firmware/2022-04-29
- canonical/emerson se4037p0 h1 i/o interface card and terminal block
- canonical/emerson se4037p1 redundant h1 i/o card with integrated power and terminal block firmware
- version/emerson se4037p1 redundant h1 i/o card with integrated power and terminal block firmware/2022-04-29
- canonical/emerson se4037p1 redundant h1 i/o card with integrated power and terminal block
- canonical/emerson se4039p0 redundant h1 4-port plus fieldbus i/o interface with terminalblock firmware
- version/emerson se4039p0 redundant h1 4-port plus fieldbus i/o interface with terminalblock firmware/2022-04-29
- canonical/emerson se4039p0 redundant h1 4-port plus fieldbus i/o interface with terminalblock
- canonical/emerson se4052s1t2b6 high side 40-pin mass i/o terminal block firmware
- version/emerson se4052s1t2b6 high side 40-pin mass i/o terminal block firmware/2022-04-29
- canonical/emerson se4052s1t2b6 high side 40-pin mass i/o terminal block
- canonical/emerson se4082s1t2b8 high side 40-pin do mass i/o terminal block firmware
- version/emerson se4082s1t2b8 high side 40-pin do mass i/o terminal block firmware/2022-04-29
- canonical/emerson se4082s1t2b8 high side 40-pin do mass i/o terminal block
- canonical/emerson se4100 simplex ethernet i/o card (eioc) assembly firmware
- version/emerson se4100 simplex ethernet i/o card (eioc) assembly firmware/2022-04-29
- canonical/emerson se4100 simplex ethernet i/o card (eioc) assembly
- canonical/emerson se4101 simplex ethernet i/o card (eioc) assembly firmware
- version/emerson se4101 simplex ethernet i/o card (eioc) assembly firmware/2022-04-29
- canonical/emerson se4101 simplex ethernet i/o card (eioc) assembly
- canonical/emerson se4801t0x redundant wireless i/o card firmware
- version/emerson se4801t0x redundant wireless i/o card firmware/2022-04-29
- canonical/emerson se4801t0x redundant wireless i/o card
- canonical/emerson ve4103 modbus tcp interface for ethernet connected i/o (eioc) firmware
- version/emerson ve4103 modbus tcp interface for ethernet connected i/o (eioc) firmware/2022-04-29
- canonical/emerson ve4103 modbus tcp interface for ethernet connected i/o (eioc)
- canonical/emerson ve4104 ethernet/ip control tag integration for ethernet connected i/o (eioc) firmware
- version/emerson ve4104 ethernet/ip control tag integration for ethernet connected i/o (eioc) firmware/2022-04-29
- canonical/emerson ve4104 ethernet/ip control tag integration for ethernet connected i/o (eioc)
- canonical/emerson ve4105 ethernet/ip interface for ethernet connected i/o (eioc) firmware
- version/emerson ve4105 ethernet/ip interface for ethernet connected i/o (eioc) firmware/2022-04-29
- canonical/emerson ve4105 ethernet/ip interface for ethernet connected i/o (eioc)
- canonical/emerson ve4106 opc-ua client for ethernet connected i/o (eioc) firmware
- version/emerson ve4106 opc-ua client for ethernet connected i/o (eioc) firmware/2022-04-29
- canonical/emerson ve4106 opc-ua client for ethernet connected i/o (eioc)
- canonical/emerson ve4107 iec 61850 mms interface for ethernet connected i/o (eioc) firmware
- version/emerson ve4107 iec 61850 mms interface for ethernet connected i/o (eioc) firmware/2022-04-29
- canonical/emerson ve4107 iec 61850 mms interface for ethernet connected i/o (eioc)