How severe is CVE-2022-41636?

CVE-2022-41636 has a CVSS v3 score of 9.1 (CRITICAL).

CVE-2022-41636

Name: haas_controller
Author: haascnc

9.1CRITICAL

Communication traffic involving "Ethernet Q Commands" service of Haas Controller version 100.20.000.1110 is transmitted in cleartext. This allows an attacker to obtain sensitive information being pass

Veröffentlicht: 10/28/2022Aktualisiert: 11/21/2024

Beschreibung

Communication traffic involving "Ethernet Q Commands" service of Haas Controller version 100.20.000.1110 is transmitted in cleartext. This allows an attacker to obtain sensitive information being passed to and from the controller.

KI-AnalyseKI-gestützt

Betroffene Produkte

haascnchaas_controller

100.20.000.1110

Referenzen

https://www.cisa.gov/uscert/ics/advisories/icsa-22-298-01
MitigationThird Party AdvisoryUS Government Resource
https://www.cisa.gov/uscert/ics/advisories/icsa-22-298-01
MitigationThird Party AdvisoryUS Government Resource