Vulnerability CVE-2022-1667
Published: 2022-06-24

Description:
Client-side JavaScript controls may be bypassed by directly running a JS function to reboot the PLC (e.g., from the browser console) or by loading the corresponding, browser accessible PHP script

Type:

CWE-841

 (Improper Enforcement of Behavioral Workflow)

 References:
https://www.cisa.gov/uscert/ics/advisories/icsa-22-174-03
Copyright 2026, cxsecurity.com

 

Back to Top