CVE-2022-32085 Festo Didactic SE CVE debrief

Who should care

Festo Didactic SE MES PC operators, OT/industrial IT administrators, and asset owners responsible for systems that include the affected MariaDB-based stack should care most. Teams managing service availability or supporting production MES deployments should prioritize this advisory.

Technical summary

The official advisory describes a segmentation fault in MariaDB versions 10.2 through 10.7, mapped to a CVSS 3.1 vector of AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H. The practical security impact is availability loss only; the supplied advisory materials do not indicate confidentiality or integrity impact, and KEV does not list this CVE.

Defensive priority

High. The issue is network-reachable, requires no privileges or user interaction per the supplied CVSS vector, and can materially affect availability. Because the vendor provides a replacement path with fixes, remediation should be scheduled promptly for affected MES PC deployments.

Recommended defensive actions

• Inventory MES PC deployments and confirm whether the affected MariaDB/XAMPP-based stack is present.
• Obtain the current Factory Control Panel version from Festo technical support and plan migration as the vendor-recommended fix path.
• Limit network exposure to MES PC services until remediation is complete, especially on untrusted or broadly reachable segments.
• Monitor for service crashes, restarts, or instability consistent with a MariaDB segmentation fault and verify recovery procedures.
• Coordinate changes with maintenance windows, backups, and rollback plans before replacing vulnerable components.
• Track vendor and advisory updates from Festo and CISA for any revision to remediation guidance or affected product scope.

Evidence notes

This debrief is based only on the supplied CISA CSAF republished advisory for ICSA-26-027-02/CVE-2022-32085 and the official links included with the record. The advisory text states that MariaDB v10.2 to v10.7 is affected by a segmentation fault in Item_func_in::cleanup/Item::cleanup_processor, and the remediation section says Festo released Factory Control Panel as a replacement for XAMPP on MES PCs that includes fixes for these vulnerabilities. The supplied CVSS vector indicates a network-accessible denial-of-service condition with no confidentiality or integrity impact. CVE published date context is taken from the provided record; later modification/republication dates are not treated as the issue date.

Official resources