CVE-2022-38773

Description

Affected devices do not contain an Immutable Root of Trust in Hardware. With this the integrity of the code executed on the device can not be validated during load-time. An attacker with physical access to the device could use this to replace the boot image of the device and execute arbitrary code.

CVSS Version 3.1

siemens
CVE ID: CVE-2022-38773
Base Score: 4.6
Base Severity: MEDIUM
Vector String:CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N/E:P/RL:T/RC:C

Refrence: MITRE

Description​

Description