CVE-2022-3156: Rockwell Automation Studio 5000 Logix Emulate Vulnerable to a Remote Code Execution Vulnerability
First published: Tue Dec 27 2022(Updated: )
A remote code execution vulnerability exists in Rockwell Automation Studio 5000 Logix Emulate software. Users are granted elevated permissions on certain product services when the software is installed. Due to this misconfiguration, a malicious user could potentially achieve remote code execution on the targeted software.
Credit: PSIRT@rockwellautomation.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Rockwellautomation Studio 5000 Logix Emulate | >=20.011<34.00 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is CVE-2022-3156?
CVE-2022-3156 is a remote code execution vulnerability in Rockwell Automation Studio 5000 Logix Emulate software.
How severe is CVE-2022-3156?
CVE-2022-3156 has a severity rating of 7.8, which is considered high.
What is the affected software for CVE-2022-3156?
The affected software for CVE-2022-3156 is Rockwell Automation Studio 5000 Logix Emulate software.
How can a malicious user exploit CVE-2022-3156?
A malicious user can potentially achieve remote code execution by exploiting CVE-2022-3156.
Is there a fix available for CVE-2022-3156?
Information about the fix for CVE-2022-3156 can be found at the reference link provided.
- collector/nvd-index
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/title
- agent/references
- agent/weakness
- agent/severity
- agent/author
- agent/first-publish-date
- agent/description
- agent/event
- agent/tags
- agent/source
- vendor/rockwellautomation
- canonical/rockwellautomation studio 5000 logix emulate
- version/rockwellautomation studio 5000 logix emulate/20.011