PatchSiren cyber security CVE debrief
CVE-2022-24037 Karmasis Informatics CVE debrief
Karmasis Informatics Infraskope SIEM+ contains an unauthenticated access vulnerability that allows remote attackers to obtain critical information without authentication. The vulnerability was published on 2022-11-18 and last modified on 2026-05-20. The affected product is Karmasis Infraskope SIEM+ with versions prior to 7.10.00 being vulnerable. The CVSS 3.1 score of 8.2 (HIGH) reflects network attack vector with low attack complexity, no privileges required, and no user interaction needed, resulting in high confidentiality impact and low availability impact. The vulnerability is classified under CWE-20 (Improper Input Validation) according to USOM, with NVD noting it as NVD-CWE-Other. No known exploitation in ransomware campaigns has been documented, and the vulnerability is not listed in CISA KEV.
- Vendor
- Karmasis Informatics
- Product
- Infraskope SIEM+
- CVSS
- HIGH 8.2
- CISA KEV
- Not listed in stored evidence
- Original CVE published
- 2022-11-18
- Original CVE updated
- 2026-05-20
- Advisory published
- 2022-11-18
- Advisory updated
- 2026-05-20
Who should care
Organizations deploying Karmasis Infraskope SIEM+ for security information and event management, particularly those in Turkish government and critical infrastructure sectors where this product is commonly deployed. Security teams responsible for SIEM infrastructure, compliance officers monitoring for unauthorized data access, and network administrators managing SIEM+ deployments should prioritize patching.
Technical summary
The vulnerability exists in Karmasis Informatics Infraskope SIEM+ and allows unauthenticated remote attackers to access critical information. The attack requires no authentication credentials and can be executed over the network with low complexity. The confidentiality impact is rated HIGH while integrity impact is NONE and availability impact is LOW. The vulnerability affects all versions prior to 7.10.00. Root cause appears related to improper input validation (CWE-20) leading to unauthorized information access. No authentication bypass techniques or specific attack vectors are detailed in available sources.
Defensive priority
HIGH
Recommended defensive actions
- Upgrade Karmasis Infraskope SIEM+ to version 7.10.00 or later to remediate the unauthenticated access vulnerability
- Review access controls and authentication mechanisms on SIEM+ deployments to ensure no unauthorized information disclosure paths exist
- Monitor for anomalous unauthenticated access attempts to SIEM+ interfaces, particularly those targeting information disclosure endpoints
- Apply network segmentation to limit SIEM+ interface exposure to authorized administrative hosts only
- Consult the USOM security advisory TR-22-0691 for additional vendor-specific mitigation guidance
Evidence notes
Vulnerability confirmed through official Turkish government security advisories (USOM and Cyber Security Authority). CPE criteria confirms affected versions are prior to 7.10.00. CVSS vector AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:L sourced from NVD.
Official resources
-
CVE-2022-24037 CVE record
CVE.org
-
CVE-2022-24037 NVD detail
NVD
-
Source item URL
nvd_modified
-
Source reference
[email protected] - Product
- Source reference
-
Mitigation or vendor reference
[email protected] - Third Party Advisory
2022-11-18