ICSA-22-249-03 · Published 2022-09-06 · View on CISA ICS-CERT ↗

Cognex 3D-A1000 Dimensioning System

CVSS 9.8 CRITICAL

Risk Summary

Successful exploitation of these vulnerabilities could result in unauthorized password changes, escalation of privileges, falsifying of password logs, and bypassing of web access controls.

CVEs (3)

CVE-2022-1368 CVE-2022-1522 CVE-2022-1525

Remediations

Cognex has reportedly fixed these issues in release 1.2 PR2. For more information, users should contact Cognex support (login required).

Affected Vendors

Cognex

Affected Products (1)

Cognex · Cognex 3D-A1000 Dimensioning System <= 1.0.3 (3354)

Affected Sectors

Commercial Facilities, Transportation

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more