- What is the severity of CVE-2022-1159?
- CVE-2022-1159 has been scored as a high severity vulnerability.
- How to fix CVE-2022-1159?
- As a workaround for remediating CVE-2022-1159: Rockwell Automation recommends users of the affected hardware and software take risk mitigation steps listed below. Users are encouraged, when possible, to combine this guidance with the general security guidelines for a comprehensive defense-in-depth strategy. There is no direct mitigation for this vulnerability in the Logix Designer application. However, a detection method is available to determine if the user program residing in the controller is identical to what was downloaded. This user program verification can be done by the following: On-demand using the Logix Designer application Compare Tool v9 or later Scheduled using FactoryTalk AssetCentre v12 or later user program verification (Available Fall 2022) To leverage these detection capabilities, users are directed to upgrade to: Studio 5000 v34 software. or later Corresponding versions of Logix 5580, 5380, 5480, GuardLogix 5580 and Compact GuardLogix 5380 controller firmware. One of the following compare tools Logix Designer application Compare Tool v9 or later – installed with Studio 5000 Logix Designer FactoryTalk AssetCentre v12 or later software (Available Fall 2022) This user program comparison must be performed on an uncompromised workstation.
- Is CVE-2022-1159 being actively exploited in the wild?
- As for now, there are no information to confirm that CVE-2022-1159 is being actively exploited. According to its EPSS score, there is a ~0% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
- What software or system is affected by CVE-2022-1159?
- CVE-2022-1159 affects Rockwell Automation Studio 5000 Logix Designer.