Vulnerability CVE-2022-30308
Published: 2022-06-13

Description:
In Festo Controller CECC-X-M1 product family in multiple versions, the http-endpoint "cecc-x-web-viewer-request-on" POST request doesn??????t check for port syntax. This can result in unauthorized execution of system commands with root privileges due to improper access control command injection.

 References:
https://cert.vde.com/en/advisories/VDE-2022-020/
Copyright 2026, cxsecurity.com

 

Back to Top