How severe is CVE-2022-41636?

CVE-2022-41636 has a CVSS v3 score of 9.1 (CRITICAL).

CVE-2022-41636

Name: haas_controller
Author: haascnc

9.1CRITICAL

Communication traffic involving "Ethernet Q Commands" service of Haas Controller version 100.20.000.1110 is transmitted in cleartext. This allows an attacker to obtain sensitive information being pass

Publicado: 10/28/2022Actualizado: 11/21/2024

Descripción

Communication traffic involving "Ethernet Q Commands" service of Haas Controller version 100.20.000.1110 is transmitted in cleartext. This allows an attacker to obtain sensitive information being passed to and from the controller.

Análisis IAImpulsado por IA

Productos Afectados

haascnchaas_controller

100.20.000.1110

Referencias

https://www.cisa.gov/uscert/ics/advisories/icsa-22-298-01
MitigationThird Party AdvisoryUS Government Resource
https://www.cisa.gov/uscert/ics/advisories/icsa-22-298-01
MitigationThird Party AdvisoryUS Government Resource