CVE-2022-34759

Name of the Vulnerable Software and Affected Versions X80 advanced RTU Communication Module (BMENOR2200H) version V1.0 OPC UA Modicon Communication Module (BMENUA0100) versions V1.10 and prior

Description A vulnerability exists due to improper parsing of the HTTP Headers, which could cause a denial of service of the webserver. This issue is related to errors in handling HTTP headers. Exploitation of the vulnerability may allow a remote attacker to cause a denial of service.

Recommendations For X80 advanced RTU Communication Module (BMENOR2200H) version V1.0, consider disabling the webserver functionality until a patch is available. For OPC UA Modicon Communication Module (BMENUA0100) versions V1.10 and prior, restrict access to the webserver to minimize the risk of exploitation. As a temporary workaround, consider implementing additional security measures to handle HTTP headers properly until a patch is available.