CVE-2022-2242
CRITICALKUKA SystemSoftware V/KSS < 8.6.5 - Unauthenticated Robot Configuration Read/Write
Title source: llmDescription
The KUKA SystemSoftware V/KSS in versions prior to 8.6.5 is prone to improper access control as an unauthorized attacker can directly read and write robot configurations when access control is not available or not enabled (default).
References (1)
Core 1
Core References
Mitigation, Vendor Advisory x_refsource_confirm
https://www.kuka.com/advisories-CVE-2022-2242
Scores
CVSS v3
9.8
EPSS
0.0089
EPSS Percentile
54.6%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-306
Status
published
Products (1)
kuka/systemsoftware_v\/kss
8.2 - 8.6.5
Published
Aug 10, 2022
Tracked Since
Feb 18, 2026