CVE-2022-2242

Summary

The KUKA SystemSoftware V/KSS in versions prior to 8.6.5 is prone to improper access control as an unauthorized attacker can directly read and write robot configurations when access control is not available or not enabled (default).

Affected Software

VendorProductVersion RangeStatus
KUKASystemSoftware V/KSS8.2 < 8.6.5affected

Weaknesses

  • CWE-306: CWE-306 Missing Authentication for Critical Function

ADP Enrichment

CVE Program Container

Additional References

References