Most recent sightings.

Most recent sightings. https://vulnerability.circl.lu Contains only the most 10 recent sightings. http://www.rssboard.org/rss-specification python-feedgen en Sat, 13 Jun 2026 15:51:14 +0000 da706e63-7968-4f8c-8d16-8f191d9ee22d https://vulnerability.circl.lu/sighting/da706e63-7968-4f8c-8d16-8f191d9ee22d/export {"uuid": "da706e63-7968-4f8c-8d16-8f191d9ee22d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-31205", "type": "seen", "source": "https://t.me/ics_cert/558", "content": "\u06a9\u0634\u0641 \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631\u06cc \u062f\u0631 \u0628\u0631\u062e\u06cc \u0645\u062d\u0635\u0648\u0644\u0627\u062a \u0627\u062a\u0648\u0645\u0627\u0633\u06cc\u0648\u0646 \u0635\u0646\u0639\u062a\u06cc Omron\n \u06f1-\n \u0627\u0646\u062a\u0642\u0627\u0644 \u0645\u062a\u0646 \u0634\u0641\u0627\u0641 \u0627\u0637\u0644\u0627\u0639\u0627\u062a \u062d\u0633\u0627\u0633 CWE-319\n \u0633\u0631\u06cc Omron SYSMAC CS1/CJ1/CP1/CP2 \u062f\u0631 \u0628\u0631\u0627\u0628\u0631 \u0631\u0645\u0632 \u0639\u0628\u0648\u0631 \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0634\u062f\u0647 \u0628\u0631\u0627\u06cc \u0645\u062d\u062f\u0648\u062f \u06a9\u0631\u062f\u0646 \u0639\u0645\u0644\u06cc\u0627\u062a \u0645\u0647\u0646\u062f\u0633\u06cc \u06a9\u0647 \u0628\u0647 \u0635\u0648\u0631\u062a \u0645\u062a\u0646 \u0633\u0627\u062f\u0647 \u0645\u0646\u062a\u0642\u0644 \u0645\u06cc \u0634\u0648\u062f \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631 \u0627\u0633\u062a.\n CVE-2022-31204 \u0628\u0647 \u0627\u06cc\u0646 \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631\u06cc \u0627\u062e\u062a\u0635\u0627\u0635 \u062f\u0627\u062f\u0647 \u0634\u062f\u0647 \u0627\u0633\u062a. \u0646\u0645\u0631\u0647 \u067e\u0627\u06cc\u0647 CVSS v3 6.5 \u0627\u062e\u062a\u0635\u0627\u0635 \u062f\u0627\u062f\u0647 \u0634\u062f\u0647 \u0627\u0633\u062a. \u0631\u0634\u062a\u0647 \u0628\u0631\u062f\u0627\u0631\u06cc CVSS (AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N) \u0627\u0633\u062a.\n\n \u06f2-\n \u0630\u062e\u06cc\u0631\u0647 \u0633\u0627\u0632\u06cc \u0645\u062a\u0646 \u0633\u0627\u062f\u0647 \u0631\u0645\u0632 \u0639\u0628\u0648\u0631 CWE-256\n CP1W-CIF41 Ethernet Option Board \u062f\u0631 \u0628\u0631\u0627\u0628\u0631 \u0631\u0645\u0632 \u0639\u0628\u0648\u0631 Web UI \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631 \u0627\u0633\u062a \u06a9\u0647 \u0645\u06cc \u062a\u0648\u0627\u0646\u062f \u0628\u0627 \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0627\u0632 \u067e\u0631\u0648\u062a\u06a9\u0644 Omron FINS \u0627\u0632 \u062d\u0627\u0641\u0638\u0647 \u062e\u0648\u0627\u0646\u062f\u0647 \u0634\u0648\u062f. \u0645\u0647\u0627\u062c\u0645\u06cc \u06a9\u0647 \u0627\u06cc\u0646 \u0631\u0645\u0632 \u0639\u0628\u0648\u0631 \u0631\u0627 \u0628\u0647 \u062f\u0633\u062a \u0645\u06cc \u0622\u0648\u0631\u062f \u0645\u06cc \u062a\u0648\u0627\u0646\u062f \u062a\u0646\u0638\u06cc\u0645\u0627\u062a \u0634\u0628\u06a9\u0647 \u06af\u0632\u06cc\u0646\u0647 \u0628\u0631\u062f \u0631\u0627 \u062a\u063a\u06cc\u06cc\u0631 \u062f\u0647\u062f.\n CVE-2022-31205 \u0628\u0647 \u0627\u06cc\u0646 \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631\u06cc \u0627\u062e\u062a\u0635\u0627\u0635 \u062f\u0627\u062f\u0647 \u0634\u062f\u0647 \u0627\u0633\u062a. \u0646\u0645\u0631\u0647 \u067e\u0627\u06cc\u0647 CVSS v3 6.5 \u0627\u062e\u062a\u0635\u0627\u0635 \u062f\u0627\u062f\u0647 \u0634\u062f\u0647 \u0627\u0633\u062a. \u0631\u0634\u062a\u0647 \u0628\u0631\u062f\u0627\u0631\u06cc CVSS (AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N) \u0627\u0633\u062a.\n\n \u06f3-\n \u062a\u0623\u06cc\u06cc\u062f \u0646\u0627\u06a9\u0627\u0641\u06cc \u0635\u062d\u062a \u062f\u0627\u062f\u0647 \u0647\u0627 CWE-345\n \u0645\u0646\u0637\u0642\u06cc \u06a9\u0647 \u062f\u0631 PLC \u062f\u0627\u0646\u0644\u0648\u062f \u0645\u06cc\u200c\u0634\u0648\u062f \u0627\u0632 \u0646\u0638\u0631 \u0631\u0645\u0632\u0646\u06af\u0627\u0631\u06cc \u0627\u062d\u0631\u0627\u0632 \u0647\u0648\u06cc\u062a \u0646\u0634\u062f\u0647 \u0627\u0633\u062a\u060c \u0648 \u0628\u0647 \u0645\u0647\u0627\u062c\u0645 \u0627\u062c\u0627\u0632\u0647 \u0645\u06cc\u200c\u062f\u0647\u062f \u062a\u0627 \u0628\u062f\u0648\u0646 \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0627\u0632 \u0631\u0645\u0632 \u0639\u0628\u0648\u0631 \u062d\u0641\u0627\u0638\u062a\u06cc PLC\u060c \u06a9\u062f \u0634\u06cc \u0645\u0646\u062a\u0642\u0644\u200c\u0634\u062f\u0647 \u0631\u0627 \u0628\u0647 \u06cc\u06a9 PLC \u0645\u062d\u0627\u0641\u0638\u062a\u200c\u0646\u0634\u062f\u0647 \u062f\u0633\u062a\u06a9\u0627\u0631\u06cc \u06a9\u0646\u062f. \u0633\u067e\u0633 \u06cc\u06a9 \u0645\u0647\u0627\u062c\u0645 \u0645\u06cc\u200c\u062a\u0648\u0627\u0646\u062f \u062f\u0633\u062a\u0648\u0631\u0627\u062a \u06a9\u062f \u0634\u06cc \u062f\u0644\u062e\u0648\u0627\u0647 \u0631\u0627 \u0628\u0631 \u0631\u0648\u06cc \u0645\u0646\u0637\u0642 \u0646\u0631\u0645\u200c\u0627\u0641\u0632\u0627\u0631\u06cc \u062a\u0639\u0631\u06cc\u0641\u200c\u0634\u062f\u0647 \u0628\u0631\u0627\u06cc \u062a\u0645\u0627\u0645 \u0646\u0633\u062e\u0647\u200c\u0647\u0627\u06cc \u06a9\u0646\u062a\u0631\u0644\u200c\u06a9\u0646\u0646\u062f\u0647\u200c\u0647\u0627\u06cc \u0633\u0631\u06cc SYSMAC CS/CJ/CP \u0627\u062c\u0631\u0627 \u06a9\u0646\u062f \u0648 \u0634\u0631\u0627\u06cc\u0637 \u0627\u0646\u06a9\u0627\u0631 \u0633\u0631\u0648\u06cc\u0633 \u0631\u0627 \u0627\u06cc\u062c\u0627\u062f \u06a9\u0646\u062f.\n CVE-2022-31207 \u0628\u0647 \u0627\u06cc\u0646 \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631\u06cc \u0627\u062e\u062a\u0635\u0627\u0635 \u062f\u0627\u062f\u0647 \u0634\u062f\u0647 \u0627\u0633\u062a. \u0646\u0645\u0631\u0647 \u067e\u0627\u06cc\u0647 CVSS v3 5.9 \u0627\u062e\u062a\u0635\u0627\u0635 \u062f\u0627\u062f\u0647 \u0634\u062f\u0647 \u0627\u0633\u062a. \u0631\u0634\u062a\u0647 \u0628\u0631\u062f\u0627\u0631\u06cc CVSS (AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:H/A:H) \u0627\u0633\u062a.\n\n \u06f4-\n \u062a\u0623\u06cc\u06cc\u062f \u0646\u0627\u06a9\u0627\u0641\u06cc \u0635\u062d\u062a \u062f\u0627\u062f\u0647 \u0647\u0627 CWE-347\n \u0645\u0646\u0637\u0642\u06cc \u06a9\u0647 \u062f\u0631 PLC \u062f\u0627\u0646\u0644\u0648\u062f \u0645\u06cc\u200c\u0634\u0648\u062f \u0627\u0632 \u0646\u0638\u0631 \u0631\u0645\u0632\u0646\u06af\u0627\u0631\u06cc \u0627\u062d\u0631\u0627\u0632 \u0647\u0648\u06cc\u062a \u0646\u0634\u062f\u0647 \u0627\u0633\u062a\u060c \u0648 \u0628\u0647 \u0645\u0647\u0627\u062c\u0645 \u0627\u062c\u0627\u0632\u0647 \u0645\u06cc\u200c\u062f\u0647\u062f \u06a9\u062f \u0634\u06cc \u0645\u0646\u062a\u0642\u0644 \u0634\u062f\u0647 \u0628\u0647 PLC \u0631\u0627 \u062f\u0633\u062a\u06a9\u0627\u0631\u06cc \u06a9\u0646\u062f \u0648 \u06a9\u062f \u0645\u0627\u0634\u06cc\u0646 \u062f\u0644\u062e\u0648\u0627\u0647 \u0631\u0627 \u0631\u0648\u06cc \u067e\u0631\u062f\u0627\u0632\u0646\u062f\u0647 \u0645\u0627\u0698\u0648\u0644 CPU PLC \u0628\u0631\u0627\u06cc \u06a9\u0646\u062a\u0631\u0644\u200c\u06a9\u0646\u0646\u062f\u0647\u200c\u0647\u0627\u06cc \u0633\u0631\u06cc SYSMAC NJ/NX \u0627\u062c\u0631\u0627 \u06a9\u0646\u062f.\n CVE-2022-31206 \u0628\u0647 \u0627\u06cc\u0646 \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631\u06cc \u0627\u062e\u062a\u0635\u0627\u0635 \u062f\u0627\u062f\u0647 \u0634\u062f\u0647 \u0627\u0633\u062a. \u0646\u0645\u0631\u0647 \u067e\u0627\u06cc\u0647 CVSS v3 4.4 \u0627\u062e\u062a\u0635\u0627\u0635 \u062f\u0627\u062f\u0647 \u0634\u062f\u0647 \u0627\u0633\u062a. \u0631\u0634\u062a\u0647 \u0628\u0631\u062f\u0627\u0631\u06cc CVSS (AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:H/A:N) \u0627\u0633\u062a.\n\n\ud83d\udc6e\u200d\u2640\ufe0f\ud83d\udc6e\u200d\u2640\ufe0f \u0628\u0627\u0632\u0646\u0634\u0631 \u0645\u0637\u0627\u0644\u0628 \u0627\u06cc\u0646 \u06a9\u0627\u0646\u0627\u0644 \u0635\u0631\u0641\u0627 \u0628\u0627 \u0630\u06a9\u0631 \u0645\u0646\u0628\u0639 \u0648 \u0622\u062f\u0631\u0633 \u06a9\u0627\u0645\u0644 \u06a9\u0627\u0646\u0627\u0644 \u0645\u062c\u0627\u0632 \u0645\u06cc\u0628\u0627\u0634\u062f.\n\n\ud83c\udfed\u0648\u0628\u0633\u0627\u06cc\u062a \u0648 \u06a9\u0627\u0646\u0627\u0644 \u062a\u062e\u0635\u0635\u06cc \u0627\u0645\u0646\u06cc\u062a \u0632\u06cc\u0631\u0633\u0627\u062e\u062a\u0647\u0627\u06cc \u0627\u062a\u0648\u0645\u0627\u0633\u06cc\u0648\u0646 \u0648 \u06a9\u0646\u062a\u0631\u0644 \u0635\u0646\u0639\u062a\u06cc\n\n\u0627\u062f\u0645\u06cc\u0646:\nhttps://t.me/pedram_kiani\n\u06a9\u0627\u0646\u0627\u0644 \u062a\u0644\u06af\u0631\u0627\u0645:\nhttps://t.me/ics_cert\n\u062a\u0648\u06cc\u06cc\u062a\u0631:\nhttps://twitter.com/icscerti", "creation_timestamp": "2022-06-29T16:55:26.000000Z"} {"uuid": "da706e63-7968-4f8c-8d16-8f191d9ee22d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-31205", "type": "seen", "source": "https://t.me/ics_cert/558", "content": "\u06a9\u0634\u0641 \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631\u06cc \u062f\u0631 \u0628\u0631\u062e\u06cc \u0645\u062d\u0635\u0648\u0644\u0627\u062a \u0627\u062a\u0648\u0645\u0627\u0633\u06cc\u0648\u0646 \u0635\u0646\u0639\u062a\u06cc Omron\n \u06f1-\n \u0627\u0646\u062a\u0642\u0627\u0644 \u0645\u062a\u0646 \u0634\u0641\u0627\u0641 \u0627\u0637\u0644\u0627\u0639\u0627\u062a \u062d\u0633\u0627\u0633 CWE-319\n \u0633\u0631\u06cc Omron SYSMAC CS1/CJ1/CP1/CP2 \u062f\u0631 \u0628\u0631\u0627\u0628\u0631 \u0631\u0645\u0632 \u0639\u0628\u0648\u0631 \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0634\u062f\u0647 \u0628\u0631\u0627\u06cc \u0645\u062d\u062f\u0648\u062f \u06a9\u0631\u062f\u0646 \u0639\u0645\u0644\u06cc\u0627\u062a \u0645\u0647\u0646\u062f\u0633\u06cc \u06a9\u0647 \u0628\u0647 \u0635\u0648\u0631\u062a \u0645\u062a\u0646 \u0633\u0627\u062f\u0647 \u0645\u0646\u062a\u0642\u0644 \u0645\u06cc \u0634\u0648\u062f \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631 \u0627\u0633\u062a.\n CVE-2022-31204 \u0628\u0647 \u0627\u06cc\u0646 \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631\u06cc \u0627\u062e\u062a\u0635\u0627\u0635 \u062f\u0627\u062f\u0647 \u0634\u062f\u0647 \u0627\u0633\u062a. \u0646\u0645\u0631\u0647 \u067e\u0627\u06cc\u0647 CVSS v3 6.5 \u0627\u062e\u062a\u0635\u0627\u0635 \u062f\u0627\u062f\u0647 \u0634\u062f\u0647 \u0627\u0633\u062a. \u0631\u0634\u062a\u0647 \u0628\u0631\u062f\u0627\u0631\u06cc CVSS (AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N) \u0627\u0633\u062a.\n\n \u06f2-\n \u0630\u062e\u06cc\u0631\u0647 \u0633\u0627\u0632\u06cc \u0645\u062a\u0646 \u0633\u0627\u062f\u0647 \u0631\u0645\u0632 \u0639\u0628\u0648\u0631 CWE-256\n CP1W-CIF41 Ethernet Option Board \u062f\u0631 \u0628\u0631\u0627\u0628\u0631 \u0631\u0645\u0632 \u0639\u0628\u0648\u0631 Web UI \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631 \u0627\u0633\u062a \u06a9\u0647 \u0645\u06cc \u062a\u0648\u0627\u0646\u062f \u0628\u0627 \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0627\u0632 \u067e\u0631\u0648\u062a\u06a9\u0644 Omron FINS \u0627\u0632 \u062d\u0627\u0641\u0638\u0647 \u062e\u0648\u0627\u0646\u062f\u0647 \u0634\u0648\u062f. \u0645\u0647\u0627\u062c\u0645\u06cc \u06a9\u0647 \u0627\u06cc\u0646 \u0631\u0645\u0632 \u0639\u0628\u0648\u0631 \u0631\u0627 \u0628\u0647 \u062f\u0633\u062a \u0645\u06cc \u0622\u0648\u0631\u062f \u0645\u06cc \u062a\u0648\u0627\u0646\u062f \u062a\u0646\u0638\u06cc\u0645\u0627\u062a \u0634\u0628\u06a9\u0647 \u06af\u0632\u06cc\u0646\u0647 \u0628\u0631\u062f \u0631\u0627 \u062a\u063a\u06cc\u06cc\u0631 \u062f\u0647\u062f.\n CVE-2022-31205 \u0628\u0647 \u0627\u06cc\u0646 \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631\u06cc \u0627\u062e\u062a\u0635\u0627\u0635 \u062f\u0627\u062f\u0647 \u0634\u062f\u0647 \u0627\u0633\u062a. \u0646\u0645\u0631\u0647 \u067e\u0627\u06cc\u0647 CVSS v3 6.5 \u0627\u062e\u062a\u0635\u0627\u0635 \u062f\u0627\u062f\u0647 \u0634\u062f\u0647 \u0627\u0633\u062a. \u0631\u0634\u062a\u0647 \u0628\u0631\u062f\u0627\u0631\u06cc CVSS (AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N) \u0627\u0633\u062a.\n\n \u06f3-\n \u062a\u0623\u06cc\u06cc\u062f \u0646\u0627\u06a9\u0627\u0641\u06cc \u0635\u062d\u062a \u062f\u0627\u062f\u0647 \u0647\u0627 CWE-345\n \u0645\u0646\u0637\u0642\u06cc \u06a9\u0647 \u062f\u0631 PLC \u062f\u0627\u0646\u0644\u0648\u062f \u0645\u06cc\u200c\u0634\u0648\u062f \u0627\u0632 \u0646\u0638\u0631 \u0631\u0645\u0632\u0646\u06af\u0627\u0631\u06cc \u0627\u062d\u0631\u0627\u0632 \u0647\u0648\u06cc\u062a \u0646\u0634\u062f\u0647 \u0627\u0633\u062a\u060c \u0648 \u0628\u0647 \u0645\u0647\u0627\u062c\u0645 \u0627\u062c\u0627\u0632\u0647 \u0645\u06cc\u200c\u062f\u0647\u062f \u062a\u0627 \u0628\u062f\u0648\u0646 \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0627\u0632 \u0631\u0645\u0632 \u0639\u0628\u0648\u0631 \u062d\u0641\u0627\u0638\u062a\u06cc PLC\u060c \u06a9\u062f \u0634\u06cc \u0645\u0646\u062a\u0642\u0644\u200c\u0634\u062f\u0647 \u0631\u0627 \u0628\u0647 \u06cc\u06a9 PLC \u0645\u062d\u0627\u0641\u0638\u062a\u200c\u0646\u0634\u062f\u0647 \u062f\u0633\u062a\u06a9\u0627\u0631\u06cc \u06a9\u0646\u062f. \u0633\u067e\u0633 \u06cc\u06a9 \u0645\u0647\u0627\u062c\u0645 \u0645\u06cc\u200c\u062a\u0648\u0627\u0646\u062f \u062f\u0633\u062a\u0648\u0631\u0627\u062a \u06a9\u062f \u0634\u06cc \u062f\u0644\u062e\u0648\u0627\u0647 \u0631\u0627 \u0628\u0631 \u0631\u0648\u06cc \u0645\u0646\u0637\u0642 \u0646\u0631\u0645\u200c\u0627\u0641\u0632\u0627\u0631\u06cc \u062a\u0639\u0631\u06cc\u0641\u200c\u0634\u062f\u0647 \u0628\u0631\u0627\u06cc \u062a\u0645\u0627\u0645 \u0646\u0633\u062e\u0647\u200c\u0647\u0627\u06cc \u06a9\u0646\u062a\u0631\u0644\u200c\u06a9\u0646\u0646\u062f\u0647\u200c\u0647\u0627\u06cc \u0633\u0631\u06cc SYSMAC CS/CJ/CP \u0627\u062c\u0631\u0627 \u06a9\u0646\u062f \u0648 \u0634\u0631\u0627\u06cc\u0637 \u0627\u0646\u06a9\u0627\u0631 \u0633\u0631\u0648\u06cc\u0633 \u0631\u0627 \u0627\u06cc\u062c\u0627\u062f \u06a9\u0646\u062f.\n CVE-2022-31207 \u0628\u0647 \u0627\u06cc\u0646 \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631\u06cc \u0627\u062e\u062a\u0635\u0627\u0635 \u062f\u0627\u062f\u0647 \u0634\u062f\u0647 \u0627\u0633\u062a. \u0646\u0645\u0631\u0647 \u067e\u0627\u06cc\u0647 CVSS v3 5.9 \u0627\u062e\u062a\u0635\u0627\u0635 \u062f\u0627\u062f\u0647 \u0634\u062f\u0647 \u0627\u0633\u062a. \u0631\u0634\u062a\u0647 \u0628\u0631\u062f\u0627\u0631\u06cc CVSS (AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:H/A:H) \u0627\u0633\u062a.\n\n \u06f4-\n \u062a\u0623\u06cc\u06cc\u062f \u0646\u0627\u06a9\u0627\u0641\u06cc \u0635\u062d\u062a \u062f\u0627\u062f\u0647 \u0647\u0627 CWE-347\n \u0645\u0646\u0637\u0642\u06cc \u06a9\u0647 \u062f\u0631 PLC \u062f\u0627\u0646\u0644\u0648\u062f \u0645\u06cc\u200c\u0634\u0648\u062f \u0627\u0632 \u0646\u0638\u0631 \u0631\u0645\u0632\u0646\u06af\u0627\u0631\u06cc \u0627\u062d\u0631\u0627\u0632 \u0647\u0648\u06cc\u062a \u0646\u0634\u062f\u0647 \u0627\u0633\u062a\u060c \u0648 \u0628\u0647 \u0645\u0647\u0627\u062c\u0645 \u0627\u062c\u0627\u0632\u0647 \u0645\u06cc\u200c\u062f\u0647\u062f \u06a9\u062f \u0634\u06cc \u0645\u0646\u062a\u0642\u0644 \u0634\u062f\u0647 \u0628\u0647 PLC \u0631\u0627 \u062f\u0633\u062a\u06a9\u0627\u0631\u06cc \u06a9\u0646\u062f \u0648 \u06a9\u062f \u0645\u0627\u0634\u06cc\u0646 \u062f\u0644\u062e\u0648\u0627\u0647 \u0631\u0627 \u0631\u0648\u06cc \u067e\u0631\u062f\u0627\u0632\u0646\u062f\u0647 \u0645\u0627\u0698\u0648\u0644 CPU PLC \u0628\u0631\u0627\u06cc \u06a9\u0646\u062a\u0631\u0644\u200c\u06a9\u0646\u0646\u062f\u0647\u200c\u0647\u0627\u06cc \u0633\u0631\u06cc SYSMAC NJ/NX \u0627\u062c\u0631\u0627 \u06a9\u0646\u062f.\n CVE-2022-31206 \u0628\u0647 \u0627\u06cc\u0646 \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631\u06cc \u0627\u062e\u062a\u0635\u0627\u0635 \u062f\u0627\u062f\u0647 \u0634\u062f\u0647 \u0627\u0633\u062a. \u0646\u0645\u0631\u0647 \u067e\u0627\u06cc\u0647 CVSS v3 4.4 \u0627\u062e\u062a\u0635\u0627\u0635 \u062f\u0627\u062f\u0647 \u0634\u062f\u0647 \u0627\u0633\u062a. \u0631\u0634\u062a\u0647 \u0628\u0631\u062f\u0627\u0631\u06cc CVSS (AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:H/A:N) \u0627\u0633\u062a.\n\n\ud83d\udc6e\u200d\u2640\ufe0f\ud83d\udc6e\u200d\u2640\ufe0f \u0628\u0627\u0632\u0646\u0634\u0631 \u0645\u0637\u0627\u0644\u0628 \u0627\u06cc\u0646 \u06a9\u0627\u0646\u0627\u0644 \u0635\u0631\u0641\u0627 \u0628\u0627 \u0630\u06a9\u0631 \u0645\u0646\u0628\u0639 \u0648 \u0622\u062f\u0631\u0633 \u06a9\u0627\u0645\u0644 \u06a9\u0627\u0646\u0627\u0644 \u0645\u062c\u0627\u0632 \u0645\u06cc\u0628\u0627\u0634\u062f.\n\n\ud83c\udfed\u0648\u0628\u0633\u0627\u06cc\u062a \u0648 \u06a9\u0627\u0646\u0627\u0644 \u062a\u062e\u0635\u0635\u06cc \u0627\u0645\u0646\u06cc\u062a \u0632\u06cc\u0631\u0633\u0627\u062e\u062a\u0647\u0627\u06cc \u0627\u062a\u0648\u0645\u0627\u0633\u06cc\u0648\u0646 \u0648 \u06a9\u0646\u062a\u0631\u0644 \u0635\u0646\u0639\u062a\u06cc\n\n\u0627\u062f\u0645\u06cc\u0646:\nhttps://t.me/pedram_kiani\n\u06a9\u0627\u0646\u0627\u0644 \u062a\u0644\u06af\u0631\u0627\u0645:\nhttps://t.me/ics_cert\n\u062a\u0648\u06cc\u06cc\u062a\u0631:\nhttps://twitter.com/icscerti", "creation_timestamp": "2022-06-29T16:55:26.000000Z"} https://vulnerability.circl.lu/sighting/da706e63-7968-4f8c-8d16-8f191d9ee22d/export Wed, 29 Jun 2022 16:55:26 +0000 51246429-b01d-42ec-b25f-0709e547a96d https://vulnerability.circl.lu/sighting/51246429-b01d-42ec-b25f-0709e547a96d/export {"uuid": "51246429-b01d-42ec-b25f-0709e547a96d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-31202", "type": "seen", "source": "https://t.me/cibsecurity/46410", "content": "\u203c CVE-2022-31202 \u203c\n\nThe export function in SoftGuard Web (SGW) before 5.1.5 allows directory traversal to read an arbitrary local file via export or man.tcl.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-07-18T02:33:23.000000Z"} {"uuid": "51246429-b01d-42ec-b25f-0709e547a96d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-31202", "type": "seen", "source": "https://t.me/cibsecurity/46410", "content": "\u203c CVE-2022-31202 \u203c\n\nThe export function in SoftGuard Web (SGW) before 5.1.5 allows directory traversal to read an arbitrary local file via export or man.tcl.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-07-18T02:33:23.000000Z"} https://vulnerability.circl.lu/sighting/51246429-b01d-42ec-b25f-0709e547a96d/export Mon, 18 Jul 2022 02:33:23 +0000 22b484e8-031b-4972-a9d3-1a499e50f39a https://vulnerability.circl.lu/sighting/22b484e8-031b-4972-a9d3-1a499e50f39a/export {"uuid": "22b484e8-031b-4972-a9d3-1a499e50f39a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-31201", "type": "seen", "source": "https://t.me/cibsecurity/46411", "content": "\u203c CVE-2022-31201 \u203c\n\nSoftGuard Web (SGW) before 5.1.5 allows HTML injection.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-07-18T02:33:24.000000Z"} {"uuid": "22b484e8-031b-4972-a9d3-1a499e50f39a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-31201", "type": "seen", "source": "https://t.me/cibsecurity/46411", "content": "\u203c CVE-2022-31201 \u203c\n\nSoftGuard Web (SGW) before 5.1.5 allows HTML injection.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-07-18T02:33:24.000000Z"} https://vulnerability.circl.lu/sighting/22b484e8-031b-4972-a9d3-1a499e50f39a/export Mon, 18 Jul 2022 02:33:24 +0000 14d91bb5-09bf-452b-a35f-f93f486571c3 https://vulnerability.circl.lu/sighting/14d91bb5-09bf-452b-a35f-f93f486571c3/export {"uuid": "14d91bb5-09bf-452b-a35f-f93f486571c3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-31209", "type": "seen", "source": "https://t.me/cibsecurity/46412", "content": "\u203c CVE-2022-31209 \u203c\n\nAn issue was discovered in Infiray IRAY-A8Z3 1.0.957. The firmware contains a potential buffer overflow by calling strcpy() without checking the string length beforehand.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-07-18T02:33:25.000000Z"} {"uuid": "14d91bb5-09bf-452b-a35f-f93f486571c3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-31209", "type": "seen", "source": "https://t.me/cibsecurity/46412", "content": "\u203c CVE-2022-31209 \u203c\n\nAn issue was discovered in Infiray IRAY-A8Z3 1.0.957. The firmware contains a potential buffer overflow by calling strcpy() without checking the string length beforehand.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-07-18T02:33:25.000000Z"} https://vulnerability.circl.lu/sighting/14d91bb5-09bf-452b-a35f-f93f486571c3/export Mon, 18 Jul 2022 02:33:25 +0000 ba630c02-6256-498a-aabf-5cf42d8796c0 https://vulnerability.circl.lu/sighting/ba630c02-6256-498a-aabf-5cf42d8796c0/export {"uuid": "ba630c02-6256-498a-aabf-5cf42d8796c0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-31207", "type": "seen", "source": "https://t.me/cibsecurity/47040", "content": "\u203c CVE-2022-31207 \u203c\n\nThe Omron SYSMAC Cx product family PLCs (CS series, CJ series, and CP series) through 2022-05-18 lack cryptographic authentication. They utilize the Omron FINS (9600/TCP) protocol for engineering purposes, including downloading projects and control logic to the PLC. This protocol has authentication flaws as reported in FSCT-2022-0057. Control logic is downloaded to PLC volatile memory using the FINS Program Area Read and Program Area Write commands or to non-volatile memory using other commands from where it can be loaded into volatile memory for execution. The logic that is loaded into and executed from the user program area exists in compiled object code form. Upon execution, these object codes are first passed to a dedicated ASIC that determines whether the object code is to be executed by the ASIC or the microprocessor. In the former case, the object code is interpreted by the ASIC whereas in the latter case the object code is passed to the microprocessor for object code interpretation by a ROM interpreter. In the abnormal case where the object code cannot be handled by either, an abnormal condition is triggered and the PLC is halted. The logic that is downloaded to the PLC does not seem to be cryptographically authenticated, thus allowing an attacker to manipulate transmitted object code to the PLC and either execute arbitrary object code commands on the ASIC or on the microprocessor interpreter.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-07-27T02:41:32.000000Z"} {"uuid": "ba630c02-6256-498a-aabf-5cf42d8796c0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-31207", "type": "seen", "source": "https://t.me/cibsecurity/47040", "content": "\u203c CVE-2022-31207 \u203c\n\nThe Omron SYSMAC Cx product family PLCs (CS series, CJ series, and CP series) through 2022-05-18 lack cryptographic authentication. They utilize the Omron FINS (9600/TCP) protocol for engineering purposes, including downloading projects and control logic to the PLC. This protocol has authentication flaws as reported in FSCT-2022-0057. Control logic is downloaded to PLC volatile memory using the FINS Program Area Read and Program Area Write commands or to non-volatile memory using other commands from where it can be loaded into volatile memory for execution. The logic that is loaded into and executed from the user program area exists in compiled object code form. Upon execution, these object codes are first passed to a dedicated ASIC that determines whether the object code is to be executed by the ASIC or the microprocessor. In the former case, the object code is interpreted by the ASIC whereas in the latter case the object code is passed to the microprocessor for object code interpretation by a ROM interpreter. In the abnormal case where the object code cannot be handled by either, an abnormal condition is triggered and the PLC is halted. The logic that is downloaded to the PLC does not seem to be cryptographically authenticated, thus allowing an attacker to manipulate transmitted object code to the PLC and either execute arbitrary object code commands on the ASIC or on the microprocessor interpreter.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-07-27T02:41:32.000000Z"} https://vulnerability.circl.lu/sighting/ba630c02-6256-498a-aabf-5cf42d8796c0/export Wed, 27 Jul 2022 02:41:32 +0000 1e610c9f-6ad6-4b29-85fd-3cad7c1f0561 https://vulnerability.circl.lu/sighting/1e610c9f-6ad6-4b29-85fd-3cad7c1f0561/export {"uuid": "1e610c9f-6ad6-4b29-85fd-3cad7c1f0561", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-31205", "type": "seen", "source": "https://t.me/cibsecurity/47047", "content": "\u203c CVE-2022-31205 \u203c\n\nIn Omron CS series, CJ series, and CP series PLCs through 2022-05-18, the password for access to the Web UI is stored in memory area D1449...D1452 and can be read out using the Omron FINS protocol without any further authentication.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-07-27T02:41:41.000000Z"} {"uuid": "1e610c9f-6ad6-4b29-85fd-3cad7c1f0561", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-31205", "type": "seen", "source": "https://t.me/cibsecurity/47047", "content": "\u203c CVE-2022-31205 \u203c\n\nIn Omron CS series, CJ series, and CP series PLCs through 2022-05-18, the password for access to the Web UI is stored in memory area D1449...D1452 and can be read out using the Omron FINS protocol without any further authentication.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-07-27T02:41:41.000000Z"} https://vulnerability.circl.lu/sighting/1e610c9f-6ad6-4b29-85fd-3cad7c1f0561/export Wed, 27 Jul 2022 02:41:41 +0000 a211a078-4aa7-455e-87ab-904a8cdccce7 https://vulnerability.circl.lu/sighting/a211a078-4aa7-455e-87ab-904a8cdccce7/export {"uuid": "a211a078-4aa7-455e-87ab-904a8cdccce7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-31204", "type": "seen", "source": "https://t.me/cibsecurity/47049", "content": "\u203c CVE-2022-31204 \u203c\n\nOmron CS series, CJ series, and CP series PLCs through 2022-05-18 use cleartext passwords. They feature a UM Protection setting that allows users or system integrators to configure a password in order to restrict sensitive engineering operations (such as project/logic uploads and downloads). This password is set using the OMRON FINS command Program Area Protect and unset using the command Program Area Protect Clear, both of which are transmitted in cleartext.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-07-27T02:41:46.000000Z"} {"uuid": "a211a078-4aa7-455e-87ab-904a8cdccce7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-31204", "type": "seen", "source": "https://t.me/cibsecurity/47049", "content": "\u203c CVE-2022-31204 \u203c\n\nOmron CS series, CJ series, and CP series PLCs through 2022-05-18 use cleartext passwords. They feature a UM Protection setting that allows users or system integrators to configure a password in order to restrict sensitive engineering operations (such as project/logic uploads and downloads). This password is set using the OMRON FINS command Program Area Protect and unset using the command Program Area Protect Clear, both of which are transmitted in cleartext.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-07-27T02:41:46.000000Z"} https://vulnerability.circl.lu/sighting/a211a078-4aa7-455e-87ab-904a8cdccce7/export Wed, 27 Jul 2022 02:41:46 +0000 97f935a5-9efd-44bc-9cc9-6fe476b85a48 https://vulnerability.circl.lu/sighting/97f935a5-9efd-44bc-9cc9-6fe476b85a48/export {"uuid": "97f935a5-9efd-44bc-9cc9-6fe476b85a48", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-31206", "type": "seen", "source": "https://t.me/cibsecurity/47037", "content": "\u203c CVE-2022-31206 \u203c\n\nThe Omron SYSMAC Nx product family PLCs (NJ series, NY series, NX series, and PMAC series) through 2022-005-18 lack cryptographic authentication. These PLCs are programmed using the SYMAC Studio engineering software (which compiles IEC 61131-3 conformant POU code to native machine code for execution by the PLC's runtime). The resulting machine code is executed by a runtime, typically controlled by a real-time operating system. The logic that is downloaded to the PLC does not seem to be cryptographically authenticated, allowing an attacker to manipulate transmitted object code to the PLC and execute arbitrary machine code on the processor of the PLC's CPU module in the context of the runtime. In the case of at least the NJ series, an RTOS and hardware combination is used that would potentially allow for memory protection and privilege separation and thus limit the impact of code execution. However, it was not confirmed whether these sufficiently segment the runtime from the rest of the RTOS.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-06-07T14:45:52.000000Z"} {"uuid": "97f935a5-9efd-44bc-9cc9-6fe476b85a48", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-31206", "type": "seen", "source": "https://t.me/cibsecurity/47037", "content": "\u203c CVE-2022-31206 \u203c\n\nThe Omron SYSMAC Nx product family PLCs (NJ series, NY series, NX series, and PMAC series) through 2022-005-18 lack cryptographic authentication. These PLCs are programmed using the SYMAC Studio engineering software (which compiles IEC 61131-3 conformant POU code to native machine code for execution by the PLC's runtime). The resulting machine code is executed by a runtime, typically controlled by a real-time operating system. The logic that is downloaded to the PLC does not seem to be cryptographically authenticated, allowing an attacker to manipulate transmitted object code to the PLC and execute arbitrary machine code on the processor of the PLC's CPU module in the context of the runtime. In the case of at least the NJ series, an RTOS and hardware combination is used that would potentially allow for memory protection and privilege separation and thus limit the impact of code execution. However, it was not confirmed whether these sufficiently segment the runtime from the rest of the RTOS.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-06-07T14:45:52.000000Z"} https://vulnerability.circl.lu/sighting/97f935a5-9efd-44bc-9cc9-6fe476b85a48/export Wed, 07 Jun 2023 14:45:52 +0000 960d4244-4f4e-4755-a746-ab813b8841a9 https://vulnerability.circl.lu/sighting/960d4244-4f4e-4755-a746-ab813b8841a9/export {"uuid": "960d4244-4f4e-4755-a746-ab813b8841a9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-31200", "type": "seen", "source": "https://t.me/cibsecurity/67342", "content": "\u203c CVE-2022-31200 \u203c\n\nAtmail 5.62 allows XSS via the mail/parse.php?file=html/$this-%3ELanguage/help/filexp.html&FirstLoad=1&HelpFile=file.html Search Terms field.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-07-27T22:28:45.000000Z"} {"uuid": "960d4244-4f4e-4755-a746-ab813b8841a9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-31200", "type": "seen", "source": "https://t.me/cibsecurity/67342", "content": "\u203c CVE-2022-31200 \u203c\n\nAtmail 5.62 allows XSS via the mail/parse.php?file=html/$this-%3ELanguage/help/filexp.html&FirstLoad=1&HelpFile=file.html Search Terms field.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-07-27T22:28:45.000000Z"} https://vulnerability.circl.lu/sighting/960d4244-4f4e-4755-a746-ab813b8841a9/export Thu, 27 Jul 2023 22:28:45 +0000 e9a003da-c695-4ca1-b1ec-1b163b3b0639 https://vulnerability.circl.lu/sighting/e9a003da-c695-4ca1-b1ec-1b163b3b0639/export {"uuid": "e9a003da-c695-4ca1-b1ec-1b163b3b0639", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-31208", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3md4lxp566f2v", "content": "", "creation_timestamp": "2026-01-23T21:02:59.636365Z"} {"uuid": "e9a003da-c695-4ca1-b1ec-1b163b3b0639", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-31208", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3md4lxp566f2v", "content": "", "creation_timestamp": "2026-01-23T21:02:59.636365Z"} https://vulnerability.circl.lu/sighting/e9a003da-c695-4ca1-b1ec-1b163b3b0639/export Fri, 23 Jan 2026 21:02:59 +0000