CVE-2022-44456
published 2022-12-19CVE-2022-44456: CONPROSYS HMI System (CHS) Ver.3.4.4?and earlier allows a remote unauthenticated attacker to execute an arbitrary OS command on the server where the product is…
PriorityP181critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
EPSS
69.88%
99.3th percentile
CONPROSYS HMI System (CHS) Ver.3.4.4?and earlier allows a remote unauthenticated attacker to execute an arbitrary OS command on the server where the product is running by sending a specially crafted request.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| contec | conprosys_hmi_system | <= 3.4.4 | — |
| contec_co_ltd | conprosys_hmi_system | — | — |
Detection & IOCsextracted from sources · hover to see the quote
- →Detect unauthenticated remote HTTP requests containing OS command injection payloads targeting CONPROSYS HMI System (CHS) Ver.3.4.4 and prior — look for specially crafted requests to the CHS web interface from unauthenticated sources ↗
- →Alert on any inbound network connections to CONPROSYS HMI System servers from internet-facing or untrusted network segments, particularly unauthenticated requests that may carry command injection strings ↗
- ·No known public exploits specifically target this vulnerability at time of advisory publication; detection should focus on anomalous unauthenticated requests to CHS endpoints ↗
- ·The vulnerability carries a CVSS v3 base score of 10.0 (AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H), indicating network-exploitable with no privileges or user interaction required and full scope impact — prioritize patching or network isolation ↗
- ·Affected versions are CHS Ver.3.4.4 and prior; Ver.3.5.0 and later are patched — version fingerprinting of exposed CHS instances is a useful detection/triage step ↗
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-28g2-wc2r-qwc7: CONPROSYS HMI System (CHS) Ver
ghsa_unreviewed·2022-12-19
CVE-2022-44456 [CRITICAL] CWE-78 GHSA-28g2-wc2r-qwc7: CONPROSYS HMI System (CHS) Ver
CONPROSYS HMI System (CHS) Ver.3.4.4?and earlier allows a remote unauthenticated attacker to execute an arbitrary OS command on the server where the product is running by sending a specially crafted request.
CISA ICS
Contec CONPROSYS HMI System (CHS) Update A
cisa_ics·2022-12-13·CVSS 9.8
[CRITICAL] Contec CONPROSYS HMI System (CHS) Update A
ICS Advisory
##
Contec CONPROSYS HMI System (CHS) Update A
Last RevisedJanuary 19, 2023
Alert CodeICSA-22-347-03
## 1. EXECUTIVE SUMMARY
- CVSS v3 10.0
- ATTENTION: Exploitable remotely/low attack complexity
- Vendor: Contec
- Equipment: CONPROSYS HMI System (CHS)
--------- Begin Update A part 1 of 5 ---------
- Vulnerability: OS Command Injection, Use of Default Credentials, Use of Password Hash Instead of Password for Authentication, Cross-site Scripting, Improper Access Control
--------- End Update A part 1 of 5 ---------
## 2. UPDATE OR REPOSTED INFORMATION
This updated advisory is a follow-up to the original advisory titled ICSA-22-347-03 Contec CONPROSYS HMI System (CHS) that was published December 13, 2022, on the ICS webpage on cisa.gov/ics.
## 3
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
https://jvn.jp/en/vu/JVNVU96873821/index.htmlhttps://www.contec.com/api/downloadlogger?download=/-/media/Contec/jp/support/security-info/contec_security_chs_221014_en.pdfhttps://www.contec.com/download/contract/contract4/?itemid=ea8039aa-3434-4999-9ab6-897aa690210c&downloaditemid=866d7d3c-aae9-438d-87f3-17aa040df90bhttps://jvn.jp/en/vu/JVNVU96873821/index.htmlhttps://www.contec.com/api/downloadlogger?download=/-/media/Contec/jp/support/security-info/contec_security_chs_221014_en.pdfhttps://www.contec.com/download/contract/contract4/?itemid=ea8039aa-3434-4999-9ab6-897aa690210c&downloaditemid=866d7d3c-aae9-438d-87f3-17aa040df90b
2022-12-19
Published