CVE-2022-34764

Name of the Vulnerable Software and Affected Versions X80 advanced RTU Communication Module versions V1.0 OPC UA Modicon Communication Module versions V1.10 and prior

Description A CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer issue exists that could cause denial of service when parsing the URL. This issue is related to the communication module's software and may allow a remote attacker to cause a denial of service during URL syntax analysis.

Recommendations For X80 advanced RTU Communication Module version V1.0, consider disabling URL parsing functionality until a patch is available. For OPC UA Modicon Communication Module versions V1.10 and prior, restrict access to the module to minimize the risk of exploitation. As a temporary workaround, consider avoiding the use of vulnerable URL parsing functionality in the affected communication modules until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.