ICSA-22-181-04 · Published 2022-06-30 · View on CISA ICS-CERT ↗

Distributed Data Systems WebHMI

CVSS 6.2 MEDIUM

Risk Summary

Successful exploitation of these vulnerabilities could allow a user with administrative privileges in WebHMI to execute arbitrary OS commands or impact other logged in users.

CVEs (2)

CVE-2022-2254 CVE-2022-2253

Remediations

Contact Distributed Data Systems for additional details regarding these vulnerabilities and their mitigations.

Affected Vendors

Distributed Data Systems

Affected Products (1)

Distributed Data Systems · WebHMI 4.1.1.7662 (and possibly prior versions)

Affected Sectors

Commercial Facilities, Critical Manufacturing, Food and Agriculture, Water and Wastewater Systems

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more