What is the vulnerability ID for this vulnerability?

The vulnerability ID for this vulnerability is CVE-2022-3685.

What is the severity level of CVE-2022-3685?

CVE-2022-3685 has a severity level of 7.2 (high).

What is the affected software for CVE-2022-3685?

The affected software for CVE-2022-3685 is all SDM600 versions prior to version 1.3.0.

What is the possible impact of exploiting CVE-2022-3685?

Exploiting CVE-2022-3685 can allow an attacker to escalate privileges.

How can I fix CVE-2022-3685?

To fix CVE-2022-3685, update the SDM600 software to version 1.3.0 or later.

Vulnerability/
CVE-2022-3685

high

7.5

CWE

285

28/3/2023

3/8/2024

CVE-2022-3685: SDM600 software privilege level

First published: Tue Mar 28 2023(Updated: )

A vulnerability exists in the SDM600 software. The software operates at a privilege level that is higher than the minimum level required. An attacker who successfully exploits this vulnerability can escalate privileges. This issue affects: All SDM600 versions prior to version 1.3.0. List of CPEs: * cpe:2.3:a:hitachienergy:sdm600:1.0:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:sdm600:1.1:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:sdm600:1.2:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:sdm600:1.2.9002.257:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:sdm600:1.2.10002.257:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:sdm600:1.2.11002.149:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:sdm600:1.2.12002.222:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:sdm600:1.2.13002.72:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:sdm600:1.2.14002.44:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:sdm600:1.2.14002.92:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:sdm600:1.2.14002.108:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:sdm600:1.2.14002.182:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:sdm600:1.2.14002.257:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:sdm600:1.2.14002.342:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:sdm600:1.2.14002.447:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:sdm600:1.2.14002.481:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:sdm600:1.2.14002.506:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:sdm600:1.2.14002.566:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:sdm600:1.2.20000.3174:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:sdm600:1.2.21000.291:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:sdm600:1.2.21000.931:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:sdm600:1.2.21000.105:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:sdm600:1.2.23000.291:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:sdm600:1.3.0.1339:*:*:*:*:*:*:*

Credit: cybersecurity@hitachienergy.com

Affected Software	Affected Version	How to fix
Hitachienergy Sdm600	>=1.0<1.3

Never miss a vulnerability like this again

Reference Links

https://search.abb.com/library/Download.aspx?DocumentID=8DBD000138&LanguageCode=en&DocumentPartId=&Action=Launch

Frequently Asked Questions

What is the vulnerability ID for this vulnerability?
The vulnerability ID for this vulnerability is CVE-2022-3685.
What is the severity level of CVE-2022-3685?
CVE-2022-3685 has a severity level of 7.2 (high).
What is the affected software for CVE-2022-3685?
The affected software for CVE-2022-3685 is all SDM600 versions prior to version 1.3.0.
What is the possible impact of exploiting CVE-2022-3685?
Exploiting CVE-2022-3685 can allow an attacker to escalate privileges.
How can I fix CVE-2022-3685?
To fix CVE-2022-3685, update the SDM600 software to version 1.3.0 or later.

collector/nvd-index
agent/type
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/severity
agent/weakness
agent/references
agent/title
agent/author
agent/description
agent/first-publish-date
agent/tags
agent/event
vendor/hitachienergy
canonical/hitachienergy sdm600
version/hitachienergy sdm600/1.0