What is CVE-2022-46732?

A critical vulnerability in GE's Proficy Historian allows command execution regardless of authentication status. Organizations must address this vulnerability immediately to mitigate risks associated with unauthorized access.

What is the severity of CVE-2022-46732?

CVE-2022-46732 has a severity rating of CRITICAL with a CVSS base score of 9.8.

CVE-2022-46732 | Critical Vulnerability in GE Proficy Historian

CVE-2022-46732 is a critical vulnerability in GE's Proficy Historian, rated with a CVSS score of 9.8. This vulnerability allows command execution even when local service authentication fails, leading to potentially unauthorized access and control over the system. Given its severity, organizations should prioritize addressing this vulnerability immediately.

The critical nature of this vulnerability poses significant risks to organizations using the affected products. The ability to execute commands without proper authentication can lead to severe consequences, including data breaches, loss of integrity, and disruption of services. Therefore, immediate action is required to implement mitigations.

As of now, there are no known exploits publicly available for this vulnerability, and it has not been included in the Known Exploited Vulnerabilities (KEV) catalog. However, the potential for exploitation remains high, necessitating proactive measures from security teams.

Organizations using GE's Proficy Historian should take this opportunity to assess their security posture and ensure that they have implemented necessary protections against command execution vulnerabilities.

Vulnerability Details

The vulnerability, classified under CWE-306, indicates that the authentication mechanism is insufficiently enforced. The CVSS score of 9.8 reflects the critical severity of the issue, highlighting its potential impact on confidentiality, integrity, and availability.

The vulnerability affects all versions of GE's Proficy Historian prior to the vendor patch, specifically for versions starting from 7.0 until 2023. Published on January 18, 2023, the vulnerability has been classified as modified, indicating ongoing updates or changes to its status.

Technical Analysis

The root cause of CVE-2022-46732 stems from a failure to enforce authentication checks effectively, allowing unauthorized command execution. This vulnerability is exploitable over the network with a low attack complexity and does not require any privileges or user interaction.

The attack vector is network-based, meaning that attackers can exploit this vulnerability remotely. Given the low complexity of the attack, it is imperative for organizations to recognize the potential threats and take appropriate measures.

This vulnerability significantly impacts the confidentiality, integrity, and availability of the affected systems, marking it as one of the more severe vulnerabilities identified in recent times.

Risk & Impact Analysis

Risk to organizations includes unauthorized command execution, which can lead to data breaches and loss of critical system integrity. With a critical severity rating, organizations must understand the potential blast radius of this vulnerability and the urgency to remediate it.

Due to the nature of the vulnerability, the urgency for remediation is classified as critical. Organizations should prioritize patching immediately to protect their systems from potential exploitation.

Signal	Status
Known Exploit	No
Public PoC	No
Actively Exploited	No
Ransomware Use	No

Affected Versions

All versions of GE Proficy Historian from 7.0 prior to the vendor patch in 2023 are affected by this vulnerability. Organizations should check their current versions and take necessary action.

Mitigation & Remediation

Organizations should immediately apply the vendor patch to remediate this vulnerability. In cases where patching is not feasible, consider implementing network controls and configuration hardening to mitigate risks. Regular monitoring and auditing of network traffic may also help identify anomalies associated with command executions.

For detailed guidance on penetration testing, organizations can refer to penetration testing services to identify potential vulnerabilities.

Detection Guidance

To monitor for potential exploitation attempts, organizations should keep a close watch on log indicators and behavioral anomalies that may suggest unauthorized command executions. Network signatures and system changes should also be monitored to ensure any unusual activity is promptly addressed.

AppSecure Threat Intelligence Insight

The long-term significance of CVE-2022-46732 highlights the ongoing necessity for robust authentication mechanisms in software products. This vulnerability underscores a pattern of issues where insufficient authentication leads to severe impacts. Security teams should take this incident as a strategic defensive takeaway to enhance their security frameworks.

For more information on best practices, security teams can refer to security testing best practices and how to effectively manage vulnerabilities.

Additionally, organizations can explore resources on vulnerability management programs to better prepare for future threats.

Disclaimer: This content was generated using AI. While we strive for accuracy, please verify critical information with official sources.

CVE ID	Title	Severity	Vulnerability Type	Published
CVE-2025-65418	CVE-2025-65418: High Vulnerability in docuFORM Managed Print Service Client	HIGH	Path Traversal	May 11, 2026
CVE-2025-65417	CVE-2025-65417: Medium Vulnerability in docuFORM Managed Print Service Client	MEDIUM	XSS	May 11, 2026
CVE-2025-65416	CVE-2025-65416: Medium Vulnerability in docuFORM Managed Print Service Client	MEDIUM	Unrestricted File Upload	May 11, 2026
CVE-2025-65415	CVE-2025-65415: Medium Vulnerability in docuFORM Managed Print Service Client	MEDIUM	Session Fixation	May 11, 2026
CVE-2025-61314	CVE-2025-61314: High Vulnerability in GmbH Mecury Managed Print Services	HIGH	XSS	May 11, 2026

CVE-2022-46732: Critical Vulnerability in GE Proficy Historian