CVE-2022-35890 : What You Need to Know

Inductive Automation Ignition before 7.9.20 and 8.x before 8.1.17 is affected by a vulnerability where Designer and Vision Client Session IDs are mishandled, leading to the potential hijacking of sessions by an attacker via Randy.

Understanding CVE-2022-35890

This section delves into the details of the CVE-2022-35890 vulnerability in Inductive Automation Ignition.

What is CVE-2022-35890?

CVE-2022-35890 is a security flaw in Inductive Automation Ignition versions before 7.9.20 and 8.x before 8.1.17 that mishandles Designer and Vision Client Session IDs.

The Impact of CVE-2022-35890

The mishandling of Session IDs can allow an attacker to determine past session IDs and potentially hijack sessions associated with these IDs via Randy.

Technical Details of CVE-2022-35890

Explore the technical aspects of the CVE-2022-35890 vulnerability below.

Vulnerability Description

The vulnerability in Inductive Automation Ignition allows for the unauthorized hijacking of sessions due to mishandling of Session IDs.

Affected Systems and Versions

Inductive Automation Ignition versions before 7.9.20 and 8.x before 8.1.17 are affected by this vulnerability.

Exploitation Mechanism

Attackers can exploit this vulnerability by determining previously generated Session IDs and taking over sessions linked to those IDs via Randy.

Mitigation and Prevention

Learn how to mitigate the risks posed by CVE-2022-35890 and prevent potential security breaches.

Immediate Steps to Take

Immediately update Inductive Automation Ignition to versions 7.9.20 or 8.1.17 to patch the vulnerability and prevent session hijacking.

Long-Term Security Practices

Implement robust session management practices and regular security audits to detect and prevent similar vulnerabilities in the future.

Patching and Updates

Regularly apply security patches and updates provided by Inductive Automation to stay protected from known vulnerabilities.