CVE-2022-34760

Name of the Vulnerable Software and Affected Versions X80 advanced RTU Communication Module versions V1.0 OPC UA Modicon Communication Module versions V1.10 and prior

Description A Loop with Unreachable Exit Condition ('Infinite Loop') issue exists due to improper handling of cookies, which could cause a denial of service of the webserver. This issue is related to errors in processing cookie files. Exploitation of this issue may allow a remote attacker to cause a denial of service.

Recommendations For X80 advanced RTU Communication Module version V1.0, consider disabling cookie handling until a patch is available. For OPC UA Modicon Communication Module versions V1.10 and prior, restrict access to the webserver to minimize the risk of exploitation. As a temporary workaround, consider disabling the cookie processing functionality in both modules until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.