CVE-2022-29951

Name of the Vulnerable Software and Affected Versions JTEKT TOYOPUC PLCs through 2022-04-29

Description The issue is related to the mishandling of authentication in JTEKT TOYOPUC PLCs. They utilize the CMPLink/TCP protocol, which is configurable on ports 1024-65534 on either TCP or UDP, for various engineering purposes such as starting and stopping the PLC, downloading and uploading projects, and changing configuration settings. This protocol lacks authentication features, allowing any attacker capable of communicating with the port in question to invoke desired functionality. The vulnerability is associated with insufficient authentication data verification, which can be exploited by a remote attacker to execute arbitrary code.

Recommendations For JTEKT TOYOPUC PLCs through 2022-04-29, consider disabling the CMPLink/TCP protocol until a patch is available to prevent exploitation. Restrict access to the configurable ports 1024-65534 on either TCP or UDP to minimize the risk of unauthorized access. As a temporary workaround, limit the functionality that can be invoked through the CMPLink/TCP protocol to reduce the potential impact of the issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.