CVE-2022-3575 CRITICAL

CVE-2022-3575: Frauscher Sensortechnik Diagnostic System FDS102 for FAdC R2 and FAdCi R2 configuration upload vulnerability

Vendor Frauscher Sensortechnik
Product Diagnostic System FDS102
Weakness CWE-434 · Unrestricted file upload
Published November 2, 2022
Last update May 5, 2025

CVSS base score

9.8/10
Attack vector Network
Attack complexity Low
Privileges required None
User interaction None
Confidentiality High
Integrity High

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

What the vulnerability does

01Description

Frauscher Sensortechnik GmbH FDS102 for FAdC R2 and FAdCi R2 v2.8.0 to v2.9.1 are vulnerable to malicious code upload without authentication by using the configuration upload function. This could lead to a complete compromise of the FDS102 device.

Key dates

02Disclosure timeline

November 2, 2022 CVE published
May 5, 2025 Record updated